Blocking websites on only certain PC's

Appleby

Appleby

New Member
Reaction score
3
Location
Texas
I've got a doctor's office who has requested that Facebook, MySpace and a few other websites be blocked on some of the employee's computers. They don't want all the computers blocked, just some. So blocking in the router seems like a no go. They have a server setup that I don't manage, nor have I even seen, so I don't really want to mess with the IP settings anyway, since I'm not sure what all they have going on.

Any thoughts on how I can do this on a per computer basis? They haven't told me how many machines need to be blocked but I know they have at least 11-12 computers on site.

Suggestions?
 
Yes, HOSTS file is probably the easiest way. However, if you get a user who has some intermediate knowledge, that can be reversed very easily. You may want to find some way of locking the HOSTS file after you edit it somehow.

For example, ZoneAlarm offers this, and you can pw protect ZA itself, which should in turn also password protect the HOSTS file, as well. But you don't want an entire firewall program just for something as minuscule as that.

I don't know of any way to password protect the HOSTS file, but you can always mark it as "Read Only" when you're finished, or, I think SpyBot can "Lock" it, but then you'd have to password protect SpyBot, and it may not be worth it for all that hassle.

Just a thought. :)
 
if the users are only standard users (not local administrators on the machine) edit the hosts file as administrator on the machines and then set read only permission onto the hosts file standard users (using NTFS permissions) locks the local users out from messing with the hosts file

I used a sample hosts script I found on google ages ago to lock out all the usual sites but I cant seem to find it at the moment
 
Thanks guys. I'll take a look at K9 but right now I'm leaning towards the HOSTS file. If K9 looks good, I might jump at that though.

As for why only some machines will be blocked.....

The doctor is a 33 year old female who owns a large and very successful pediatric dentist office. Just like me and you, she wants free reign to do whatever I wanted to do in my spare time at her own business. However, from what I understand, she's paying her employees to surf Facebook, when there are 50 other things they could be doing.

Speaking of this issue, this is a HUGE problem that I'm seeing more and more of and for the most part, the employers have NO idea how bad it is. I've got some businesses that I do work for, that as soon as the boss leaves the office, work apps are minimized and Facebook comes up. It is an addiction for many.
 
In that case you might find blocking facebook via the hosts file doesn't do it. Try googling "facebook unblock" and you'll see what I mean.
 
From what I've seen, the employees she has are great at working on teeth but not so much when it comes to computers.;) I'm really not giving them enough credit to unblock it, but to be honest if they did, I think she'd fire them. And I think she'd be darn well justified.

I'll look into the K9 app. I assume it's password protected.
 
OpenDNS is probably your best bet, as far as effectiveness. Set it as the DNS server for the PCs you want to block websites on.
 
I used to work in a school so I've seen every proxy and get-around going. Kids are relentlessly devious about these things!
 
These computers are all pretty much out in the open and visible, so if someone is bypassing the blocks, someone else will see it, likely the doctor or her office manager. If this happens, I think there will be hell to pay for that employee just for the simple reason they are going to such great lengths to break the rules.

I will lay out the different options for them and see what they want to do. Thanks for the help fellas.
 
Go here and download

http://www.hosts-file.net/?s=Download

pre-configured HOST files, these have thousands of red flagged domains, porn, malware, drive by download sites etc. Simply enter the domain you want to block in these and replace the existing host files, nice little extra added insurance. And as stated limit the user account and use proper permission to limit host file access, and please use strong passwords and dont forget those hidden admin accounts and disable running command prompt on limited user accounts in any drive location.
 
RedFoxComp said:
That's why opendns is great, you can block proxy sites too :)
Click to expand...

I really need to check opendns out. Sounds good.

Out of interest - I assume the setting you require are linked to your IP address. Since most people have dynamic addresses I assume it has to get updated with some application. What is to stop someone from killing that app in task manager and then resetting the router by turning it off an on and so getting a new IP?

Can I also assume it's useless against proxy sites if they are new? You can sign up to get mails with the newest proxy sites.
 
Last edited:
You must log in or register to reply here.

Similar threads

HCHTech
Website access issues
Replies
11
Views
480
phaZed
phaZed
ThatPlace928
Workarounds for Windows 11 on Incompatible Hardware
6 7 8
Replies
142
Views
17K
Sky-Knight
Sky-Knight
HCHTech
Dell Warranty lookup
Replies
1
Views
132
Markverhyden
Markverhyden
Digital Funland
  • Question Question
Problem on Multi-OS bootable usb made with ventoy
Replies
19
Views
1K
Digital Funland
Digital Funland
HCHTech
GoDaddy again - Outlook error 7ita9
Replies
3
Views
411
callthatgirl
callthatgirl
Back
Top