LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page How to block only gmail access through https:
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 11-05-2010, 03:45 AM   #1
sudhakar.s
LQ Newbie
 
Registered: Nov 2010
Posts: 1

Rep: Reputation: 0
Smile How to block only gmail access through https:

Hi All
Who can help me regarding squid proxy server...!!!

My Problem is: I want to stop gmail access without blocking https. Yes in my squid proxy normal http://gmail.com is not accessible. But gmail recently started https service by which user can still get access to gmail. I DONT WANT TO STOP https CAUSE ITS BEING USING BY MY COMPANY GOOGLE MAIL PROGRAM.

Thanks in Advance.


Regards,
Sudhakar.
 
Old 11-05-2010, 05:33 AM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Well, there's two possibilities I can see. You can block by entire subdomains or by restricting the CONNECT method from being used on certain ones. Pull up encrypted Gmail on one on the clients and see what Squid's access log looks like. It should have the information you need to proceed. Post the relevant part here if you need help writing the ACLs.
 
Old 11-05-2010, 07:45 AM   #3
stress_junkie
Senior Member
 
Registered: Dec 2005
Location: Massachusetts, USA
Distribution: Ubuntu 10.04 and CentOS 5.5
Posts: 3,873

Rep: Reputation: 335Reputation: 335Reputation: 335Reputation: 335
Quote:
Originally Posted by win32sux View Post
... You can block by entire subdomains ...
Yes. Your gateway router may be able to block domains by name and/or by IP address. I do this for small businesses on their inexpensive gateway routers.

Of course there are ways for the end users to get around whatever you do. Domain name or domain address filtering can be circumvented by the end user accessing a public proxy server for example.
Last edited by stress_junkie; 11-05-2010 at 07:49 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
hot to block gmail without blocking https in SQUID Sharia Linux - Server 1 04-08-2010 06:09 AM
Block https Traffic anu_here Linux - Security 8 10-30-2009 03:42 AM
how to block gmail & gtalk (https traffic)using squid satishmali1983 Linux - Server 4 06-25-2009 01:22 AM
gmail chatting block soumalya Linux - Networking 3 09-18-2008 08:11 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:03 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration