Employee monitoring

iamnotherbert · 10-20-2003, 12:26 PM

Hi All,
My boss has asked me to setup web access monitoring for an employee at our buisness. We currently have a linux firewall that can be "tweaked" to do anything. I would like to setup a program to log all sites visited and times they were visited and obviously what internal ip has requested the page. I've seen a few packages that do this but am looking for a defacto standard that is tried and true. Any advice, comments welcome.

Thank you
-d

randomblast · 10-20-2003, 12:49 PM

does squid have them kind of logging facilities?
also, do you know C/C++?
you could make a libpcap based monitoring/logging app

iamnotherbert · 10-21-2003, 10:03 AM

Hi Randomblast,
Thank you for your help. I do know c but would rather not roll my own system at this time. I was curious to see if there is anything already on the market..

-d

stickman · 10-21-2003, 10:14 AM

You could do something as simple as force your users to use a proxy server such as squid for web access. You could just monitor the squid logs to see who goes where.

Jerre Cope · 10-21-2003, 10:59 AM

I would recommend squid, also webmin has some handy web based tools from which to manage squid and display the logs. I also use squidGuard in conjunction with squid for black listing. I use a shell script to scan the logs for questionable sites & use squidGuard to add those sites to the blacklist and e-mail an alert.

Pcghost · 10-21-2003, 11:01 AM

Squid with Squidguard is a wonderful way to control access to the web. Not too hard to set up either. The other advantage to using Squid is it is a caching proxy so you will save bandwidth as an added benefit.

AgentSmith · 10-21-2003, 11:57 AM

Hi...

we use SurfControl (http://www.surfcontrol.com/) and it works fine. Maybe this can help you

Greets

Pcghost · 10-21-2003, 01:10 PM

Surfcontrol looks pretty cool. Does it run on Linux though?

AgentSmith · 10-21-2003, 05:30 PM

Yeah there seems to be a linux version available.. check the website.

Untitled_Titan · 02-01-2007, 02:36 AM

Quote:

Originally Posted by Pcghost

Squid with Squidguard is a wonderful way to control access to the web. Not too hard to set up either. The other advantage to using Squid is it is a caching proxy so you will save bandwidth as an added benefit.

I am using a squid proxy. but how do I install/use squidgaurd? I haven't seen any tab in Webmin?

nx5000 · 02-01-2007, 02:49 AM

After checking with the law (in some countries, the administrator and the boss are liable if the person is not informed

to be sure you know what you do:
http://main.linuxfocus.org/English/S...ticle346.shtml

Ratty_UK · 04-05-2007, 04:04 AM

This is exactly the sort of system I am setting up. We have it setup to block porn etc and also it redirects to a windows box that writes the violation into a SQL database. On top of that we run a realtime monitor for the squid cache and a reporting tool. If your internested I can give links / tips

Rat