Question

Locked

How do I deal with porn surfer?

By storch ·
Howdy,

I am a rather inexperienced IT person. I got the job partly by default and partly because of my interest.

In my organization, not once, not ever are computer problems the users' fault. It's always the computer, the software, or our network. At least that's their story and they are sticking to it.

After recently being beat up verbally but one of these users I was in the process of determining his problem. In looking around, in his browser history I found a large number of porn sites visited in the last few days. I haven't finished full malware and virus scans yet but I suspect that I will find some nasty little critters. (Yes we have coporate virus scanning installled but it doesn't always catch everything.)

You know, it's not that people visiting porn sites bother me on moral grounds. I don't care. What bothers me is all the junk that gets downloaded and becomes a problem for me. Actually this is the first time this has come up at work (I've untangled some friends' machines.)so I don't have any sort of porn filters in place nor am I yet familiar with them.

I didn't think and certainly the management doesn't think porn is an issue. They don't even imagine anyone here would visit such sites.

The person who is visiting the porn sites is very well respected here and actually he does seem like quite a nice person. So I want to know, do you think I should just confront the guilty party about it? Tell my boss? Tell HR? I don't want to get him in trouble but I don't want to have to keep cleaning up after him. If I approach him directly, how do I tell him diplomatically that, at least part of his computer glitches were caused by his own careless surfing?

Sorry for my na?vet?. I am learning as I am going. Thanks for your help.

storch

This conversation is currently closed to new comments.

12 total posts (Page 2 of 2)   Prev   01 | 02
Thread display: Collapse - | Expand +

All Answers

Collapse -

AUP

by pc21geek In reply to How do I deal with porn s ...

I would start off by implementing an AUP (Accetable Usage Policy) Get together with HR, Legal and IT/Is and draft one up. Make all of the employees sign it and return it to HR to go into thier files. Next setup a screen pop upon logging in that again states " Using XYZ's Corporate networks and computers they agree to abide by the AUP they signed and you have the right to monitor all activities on thier computers
" That way you have a leg to stand on if you need to enforce the AUP.
Next put in place some kind of internet content filter and logging device. Some of these solutions are tens of thousands of dollars to free for open source solutions.
I have personal experience with Websense Enterprise and it is very robust, but pricy.
I also have experience using Endian Firewall.I use this at home to keep my teenagers honest. Endian is Free and open source. It will log sites, and block contect as well. It is not as robust as Websense, but its free.
I think making the users aware that you might be monitoring them, or logging where they go, is half the battle. I would not sit back and wait for one of those virus/trojans/malware to crash or infect your network though.

Good luck..

Kevin

Collapse -

Thanks to all

by storch In reply to How do I deal with porn s ...

I appreciate the suggestions you all have posted. I do feel like I'm alone in the wilderness here at work so it's nice to know there are knowledgeable, friendly people out there who are willing to give practical, usable advice.

I think I can now make a resonable decision thanks to you folks. Meantime, I think I'll tune up my resume in case I find myself on the sidewalk shaking my head!

storch

Back to Malware Forum
12 total posts (Page 2 of 2)   Prev   01 | 02

Related Discussions

Related Forums