Date: Fri, 12 Nov 2004 12:48:31 EST From: TM4526@aol.com To: bsilver@chrononomicon.com Cc: questions@freebsd.org Subject: Re: Squid+Privoxy or Snort? Message-ID: <ff.65de15a.2ec6516f@aol.com>
next in thread | raw e-mail | index | archive | help
In a message dated 11/12/04 9:38:59 AM Eastern Standard Time, bsilver@chrononomicon.com writes: > I'm trying to investigate some potential solutions to escape from > different microsoft specific malware (like gator's software). > The two mentioned in subject were found after some Google search. > Wonder what are you guys using for this sort of problems. > Thanks. >Squid can be used if you redirect all web traffic through the squid >proxy; we have used squid with SquidGuard to block access to some >gator-esque sites. If they get infected, they at least can't phone >home and we can see what IP's are trying to phone home so we can clean >them up if it's a problem. The issue with proxies is that they are a drag on your network; using squid as a firewall only isnt very smart. If you are already using it fine. But on a large network you are better off using a firewall or some sort of bandwidth management like the stuff on etinc.com.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ff.65de15a.2ec6516f>