Have you ever had that feeling that someone is standing over your shoulder, while browsing at work? Or someone sends you a link in your corp mail, you click and you get that wonderful message, “this site has been blocked by <your big brother software> for <some reason that its not related to work>”…… Every time i have gotten a message like that, my brain goes “uh oh” knowing that in some log that it recorded your user name time and the site you were trying to get to!! So you think that this is another mark on your flawless company record…but even worse is it keeps all the sites that you go to regardless if its blocked or not…….So are you getting paranoid now? Well don’t be unless you know what your doing is against company policy like looking at NSFW sites or other social networking sites. But it still bugs me that my Digital Privacy is still being infringed upon……I know that Company’s put in filters and proxy s for extra security to keep out the viruses malware and spam from the internet, But do you really need Draconian laws to help with security? isnt there a better way, maybe Teach your emplyees, good browsing habits, what phising is or social engineering, and whats acceptable for work browsing and sample sites…… It may be years before major company realize that there internet policy is failing due to people circumventing there security, which is a Big problem that no one seems to realize, so Let me tell you some interesting ideas to circumvent your employers draconian internet policy……………… There are a few different ways to get by there security, depending on what is in your way. Most company uses a Proxy to allow people to access to the internet which usually have some sort of login, some use a Web filter software added to the proxy to allow you access to a few sites that the company feels you need access to, others use just the filter and some use something called a transparent proxy or gateway that has some sort of filtering software, there may be others ways for security to impede on your web surfing. Now for the Good stuff, how to get around your works web security… Remember I do not Support breaking the law or circumventing critical network security or breaking your company internet usage policy…Basically I take no Responsibility for your actions. Read the Policy and understand it because knowing your rights as an employee is your responsibility not HRs……….This is for informational and educational purposes only!
starting with the easiest, and then working to the hardest more permannet solution
1.) The easiest way for you to get past there security is to use a service like babelfish or google translator, translator services use there website to translate and display websites, for example you use babelfish and want to go to www.NSFWsite.com so you put in the website into the translator and out comes a website with a the translators address, and now you can browse to almost anywhere using a services like these… one thing is that you are still using the company’s internet security but now you can get to your facebook page
Note: Your still using there security and most likely will still have a digital trail of where you have been
2.) Use a HTTP tunnel to browse……they are out there on the web but finding them could be difficult and dangerous because they can capture your traffic and steal personal data so let take everyone else out of the equation and setup one for your self there are a few out there that you can find but not my prefered way because you need to have a webserver setup or find a public tunnel….but it is easier than the last option.. but not by much in a case that you want to setup a tunnel
Note: if your using a public http-tunnel do not go to sites that have your personal info or someplace that you can login to or care about…yes we all have that one account on a forum that we never goto, that would be fine to use on the public http-tunnel
3.) Now for the best and most permanent setup, creating a Home proxy server, yes this may be pretty tough to setup if you don’t have the know how but the know how can be found using google or by the support forums for your software, For this you will need 3 things for your setup, PC, internet, proxy software…..
well if your reading this you most likely have 2 out of the 3 things so go find a proxy software ( I use Squid 2.7 but 3.0 is out there) there are lots of choices, look for open source or free ware……windows or linux your choice of OS as well,
next setup the proxy, if you can use the proxy in your web browser from your home pc, i suggest that you use some sort of authentication to keep unwanted peoeple using your bandwidth. Now pick an open port at work, My experience is that most non – standard ports are usually closed by a firewall but not all, your best luck is with either port 22 or 23 , 8080 and i believe port 443 should all be open for you to use at work, most places need to be able to use FTP SSH or Telnet and HTTPS with out hindrance…..now after you have found an open port use it for your proxy setup at home, open that port on your router if it applies, also called port forwarding next obtain your IP address using www.ipchicken.com or whatismyip.com, once that is done go to work, now for the interesting part…most corporations are stuck with IE so leave IE alone and don’t change the settings, you may need them for your web applications for work.instead install firefox set it up and test on your works network it works, now goto preferences and put in your IP address into the proxy settings add the port you chose for your proxy and then apply if all went well you should now be able to browse the internet , now go to ipchicken again and check your IP if all is good you will see the ip address that you input into the settings otherwise something went wrong
hopefully this will get you some ideas to have a little more freedom at work,
later on i will go into how to setup a squid proxy with authentication.
So why are comapanies so strict on there internet policy? I believe that they dont understand that in this day in age that hindering the internet is like taking away your newspapers, magizines and books and telling you not to read X page or Y page or taking a black marker to the parts that they dont like, IT policies are old and outdated and need to be redone to allow for people to learn Good browsing habits and learn what a threat looks like, teach your employees how to browse safe, and use good judgment, and where not to go and what to do when there is an issue with spyware or a virus…….Maybe then we can start making proggress in the war on Malware and spam……….
“did you get that thing i sent you?”