Blocking executables from being downloaded

southside · Jan 7, 2005

Hi All,

Can anyone advise me how to block the downloading of executables through our internet connection. I am running a proxy with squid, protected by Checkpoint Firewall and Cisco Pixs on a large network. I need to block executable file downloads and archived executable file downloads from the internet for all users.

MichealC4 · Jan 7, 2005

This doesn't help you with what you have in place (it is probably possible with what you have in place), but what we have is an IPS (Intrusion Prevention System) that checks the packets for signs of executable attachments through email. One such header it looks for (among others) is the "This cannot be run from DOS" message. Not much help I'm afraid, but maybe it'll get you started.

----------------------------
"Will work for bandwidth" - Thinkgeek T-shirt

rn4it · Jan 7, 2005

Not familiar with squid, but most proxy server will allow you to block *.exe's, I guess you can't with squid. We've used Igear(Symantec's product), but now use websense. It works great, you can create different groups for different levels of access. strong reporting system even to the level of billing to the user/department.

http://www.websense.com/

southside · Jan 11, 2005

Thanks for replies.....

In the end I managed to achieve this through Squid to block .exe's and archive files. It worked with great success.

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Blocking executables from being downloaded

southside

Technical User

MichealC4

Programmer

rn4it

MIS

southside

Technical User

Similar threads

Part and Inventory Search

Sponsor