Why not block all executables except from a list of whitelisted sites?
Allow windowsupdates.com, Microsoft.com, adobe.com,...
That negates the need for signature based detection.
Thomas J. Raef
e-Based Security, LLC
www.ebasedsecurity.com
1-866-838-6108
"You're either hardened, or you're hacked!"
> -----Original Message-----
> From: Indunil Jayasooriya [mailto:indunil75@gmail.com]
> Sent: Wednesday, October 24, 2007 1:34 AM
> To: squid-users
> Subject: [squid-users] Re: block spyware with squid
>
> Hi,
>
> I want to block spyware while users browse internet. Are there any
> ACLs to block this ?
>
> Have you done this before?
>
> --
> Thank you
> Indunil Jayasooriya
Received on Wed Oct 24 2007 - 06:07:38 MDT
This archive was generated by hypermail pre-2.1.9 : Thu Nov 01 2007 - 13:00:02 MDT