[plug] schoolboys

[Michael Hunt]

If you are using squid as your proxy server try creating an acl to block
access to hotmail. That will at least get you some temporary breathing room.

   -----Original Message-----
   From: owner-plug at linux.org.au [mailto:owner-plug at linux.org.au]On Behalf
   Of John Breen
   Sent: Monday, May 31, 1999 1:56 PM
   To: 'plug at linux.org.au'
   Subject: RE: [plug] schoolboys


   I would assume, as Bret has already said that you use some sort of IP
   firewall and gateway?  I seem to remember somewhere along the line that
   it is possible to log things going out through firewalls to certain IP
   addresses or using certain ports.  I know they can be blocked for
   certain users, but not knowing the users, and since they're on port 80
   (I assume), that might make life difficult.  perhaps you can stop anyone
   connecting to hotmail though - I think you can do that too.

   > -----Original Message-----
   > From:	Lindsay Allen [SMTP:allen at cleo.murdoch.edu.au]
   > Sent:	Monday, 31 May 1999 13:22
   > To:	plug at linux.org.au
   > Subject:	[plug] schoolboys
   >
   >
   > At a school I support we have a problem.  One or two students are
   > behaving
   > in as "inappropriate" manner by sending forged email and I want to
   > find
   > out who they are.
   >
   > They use Netscape and Hotmail to send messages so outgoing mail can
   > not be
   > monitored directly.  I suspect that Netscape encripts mail which will
   > make
   > the job almost impossible short of having a trojan at the desktop.  Is
   > this correct?  If, not any ideas on how to capture text on its way
   > out?
   >
   > Kernel 2.2.9.
   >
   > Lindsay
   > =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
   > =
   > Lindsay Allen   <allen at cleo.murdoch.edu.au>  Perth, Western Australia
   > voice +61 8 9316 2486    32.0125S 115.8445E    vk6lj     Debian Linux
   > =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
   > =