Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 2371 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Malicious Websites

humungo6

Just a quick one concerning malicious websites. We have about 1,000 students at the school who obviously will either be trying to break the system or will be researching a variety of different topics. Its not unusual to have 2-3 JS redirects reported every day. Fortunately, I can block websites via our proxy server within a minute or so - lowering the chance of infection etc. However, I was wandering what others do at this point; is there a way in which to contact Sophos support who will then do the leg work to get the webmaster to get the site sorted, or in some cases taken down? I know that with the web appliance there is better support for this type of instance, but for surely, for all customers, Sophos would be looking to get these sites on a list at the very least to be blocked?

Any thoughts?

:2974


This thread was automatically locked due to age.
  • 0

    I must admit I don't encounter this problem very often, but since you're obviously not going to have the time to contact the owner of every site it may be easier reporting the site to Google ( http://www.google.com/safebrowsing/report_badware/ ).  It may be a bit harsh to the unsuspecting site owner, but when they realise their site is being blocked by Google it usually makes them sort the problem out quicker!  (which is better for the entire web in the long run)

    :3033
  • 0

    Definately a worthwhile addition to my "Favourites"! :smileyhappy:

    I was more wandering if there was anywhere that Sophos accomodate this at all; as far as contacting the website owner etc.

    Thanks again for that though RBGE

    :3034
  • 0

    I'm not aware of any method for contacting the site owner, although the filtering of websites would be handled by one of the web appliances.  I use a product from another vendor for this purpose, so can't really comment :smileyindifferent:  The web scanning feature in Sophos Endpoint Security should protect you, although it won't go past blocking the malicious code.

    From the knowledgebase though, it looks like the reporting of malicious websites is handled from within the appliance itself, not as a separate webpage.  See Reviewing URL risk classification at the bottom of http://www.sophos.com/support/knowledgebase/article/17590.html

    Maybe someone who actually uses a Sophos web appliance will be able to give a better answer than me though!

    :3043
  • 0

    I might contact support about the possibility of providing support on this, to report infected sites. I know the web appliances have the feature, as I tried to mention previously. We too use another vendor for our proxy, so its not a problem as such. I just wandered really.

    :3045
Unfiltered HTML