Fri, May 29 2009 22:30
So what do I block
After this morning's presentation on "Stupid users and Attackers" I've been asked what categories and sites I block using OpenDNS. One nice thing about OpenDNS is that I can manage several networks just from one console. So the sites I block on one network can be different from another.
For example at the office I found that I had to reopen the "proxy-anonymizer" as there was a site we used (I forget now which one) that was being blocked. I also have uploaded a custom logo so that when people know they've been blocked, they know we mean it to be blocked.
But you may need to play around with the settings and not use the high and choose custom settings based on the needs of the firms.
I've also added some specific urls and blocked domains that I feel don't add anything but risk. This is where my choice to block doubleclick comes in. Does is slightly make Amazon.com give off a weird message when you check out? Yes it does, but if you tell people what to expect, it's not an issue.
And if the top things blocked are stuff like this? I don't think it needs to be in my networks in the first place.
Filed under: Security