[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: icq





Henry Ficher wrote:

 >> Sorry not a linux question, does anyone have any idea hoe to block 
icq with

> icqNewer versions of ICQ are nearly impossible to block with a firewall, for
> the clients can now use any open TCP port, like SMTP and FTP. You might look
> at using a proxy server for outbound connections, but I think ICQ can get
> through them also.

You can try to block connection by destination and not by protocol.

A better approach is to explain in a simple and plain terms that ICQ
usage is prohibited and why it is prohibited.

Then leave the restriction off the firewall but use
a sniffer (or the firewall logs) to detect people who
still use it. When you find one beat the crap out of him with a LART[1].

One usually need not apply the second stage more then once or
twice. The exact number of iterations required is usually determined
by the the size of the LART used and how well you use it.

And if you are a a sysadmin, which I assume you are, never forget:
It's down, not across! [2]

[1] Luser Attitude Readjustment Tool
[2] http://everything2.com/index.pl?node=down%2C%20not%20across


Cheers,
Gilad.



-- 
Gilad Ben-Yossef <gilad@benyossef.com>
http://benyossef.com :: +972(54)756701
"Anything that can go wrong, will go wrong, while interrupts are disabled. "
	-- Murphey's law of kernel programing.


=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il