THREAT MONITOR
How to reduce risks with URL filtering
Al Berg, CISSP, CISM
06.15.2005
Rating: -3.50- (out of 5)
What you will learn from this tip: How to reduce risks posed by hackers, worms and spyware by controlling the URLs that enter and leave your network.
The role of the lowly URL has really grown over the past few years. Originally, URLs (Uniform Resource Locators) were simple tools to help point your Web browser at the Web page of your choice. Today, they are a highly extensible 'meta language' allowing remote computers to exchange executable content and commands as well as a conduit for client/server data. Therefore, controlling the URLs that enter and leave your network is an important way to reduce risks posed by hackers, worms and spyware.
Here are three ways filtering URLs on their way out of your network can make you safer:
Filtering inbound URLs can really ruin a hacker's day -- and we security professionals just love to ruin hackers' days. Here are two ways to control the URLs entering your network:
Whether you filter inbound URLs,
To continue reading for free, register below or login
To read more you must become a member of SearchSecurity.com
outbound URLs or both, there will be times when the filter blocks legitimate traffic and your users are going to get upset. Make sure you have a plan for the exceptions. You should also have a process that allows users to report filtering problems, and resolve them quickly and consistently, so the business manager will not see security as a business obstacle.
While URL filtering is not a complete solution to the problems posed by malware and inappropriate content, when properly used, it is a key component of a "defense in-depth" strategy for corporate networks.
MORE INFORMATION
About the author
Al Berg, CISSP, CISM is the Director of Information Security for
Liquidnet (http://www.liquidnet.com), the #1 electronic marketplace for block trading and the fifth fastest growing private company in America according to Inc. Magazine's 23rd annual Inc. 500 list of the fastest growing privately held companies in America.
|
|
Rate this Tip
|
To rate tips, you must be a member of SearchSecurity.com.
Register now
to start rating these tips. Log in if you are already a member.
|
|
|
BROWSE BY TAG
Threat Monitor,
Malware, Viruses, Trojans and Spyware,
Information Security Threats,
Application and Platform Security,
Application Attacks (Buffer Overflows, Cross-Site Scripting),
SSL and TLS VPN Security,
Secure VPN Setup and Configuration,
Enterprise Network Security,
Email Protection,
Email Security Guidelines, Encryption and Appliances,
Web Security Tools and Best Practices,
Web Server Threats and Countermeasures,
Web Application and Web 2.0 Threats,
VIEW ALL TAGS
|
|
DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.
|
|
|
|
|
|
|
