What is Digg?Sponsored by Dragon Age: Origins
Can't get enough Dragon Age: Origins? Play the flash game. view!
DragonAgeJourneys.com - Play the free companion flash game to Dragon Age: Origins.
125 Comments
- kooft, on 10/12/2007, -0/+4711. Be the sysadmin...
- aurrea, on 10/12/2007, -0/+31Site's blocked....
- raynar, on 10/12/2007, -5/+35Can't you use the portable version and run it off a thumbdrive?
- dpcdomino, on 10/12/2007, -2/+2811. (con't) ....or be the system admins good friend
- brstilson, on 10/12/2007, -2/+20"I'm with you here... I work at a mega-big company that forces us to use IE. And we can't even upgrade to IE7. Lucky for me, I snuck Opera by them, but I'm hurtin for Firefox."
From a support standpoint in a big company, it is extremely important to have everyone's computer running the same software . It can be a tremendous pain in the ass just having some people on IE7 and some on IE6. Sure, they could just make everyone upgrade to 7, but think of all the non-tech oriented people they would get calls from, freaked out about the new interface. IT is going to do what amounts to the least amount of headache for them, and supporting different versions of different software is a MAJOR headache. - TheMrFlibble, on 10/12/2007, -0/+16At the place I work no internal user is allowed direct access to the Internet everything must go through the proxy users rights are so restricted they can't change settings or install software.
The sysadmin is also a git and is now reading this and figuring out how to stop people from using these methods.
Why, yes I am the sysadmin. - fabio1, on 10/12/2007, -1/+16good thing i'm a sysadmin that reads digg.
- MegaSilver, on 10/12/2007, -0/+15My work doesn't allow Firefox either. All I did was rename the exe to iexplorer.exe and ta-da!
- DASH, on 10/12/2007, -0/+12One of the places I work at PT a Financial Institution a small Credit Union doesn't even allow traffic to google.com. I think I will be getting in trouble trying to access digg via the ip address this week!
http://www.Digg.com = http://64.191.203.30
For those in my same situation! - TheKillDoctor, on 10/12/2007, -0/+11What sucks being the sysadmin is when Human Resources wants verification that a person is bypassing or abusing their internet access. Then watching that person get fired, I feel dirty...
- RuffRidr, on 10/12/2007, -0/+11As always, be very careful with these methods. You may be able to fool your admin for awhile, but sooner or later your activity will be detected. Then your ass will be out the door. Even methods like using a home proxy become evident when you visit your site several hundred times a day and it starts moving up to the top of the most accessed site list.
- pathy, on 10/12/2007, -3/+12http://portableapps.com/apps/internet/firefox_portable
- dpcdomino, on 10/12/2007, -2/+11My work does not even allow Firefox access....so angry.
- ABadInAlbany, on 10/12/2007, -0/+9my solution: do your job well enough that they don't care what you're doing on the net. works all the time, as long as you're not working for a super-draconian corporation. Gannett, Xerox, other major corporations, and many smaller companies, all seem to abide by this philosophy.
- captinherb, on 10/12/2007, -0/+8"The other tips, excluding #1, sound pretty useless. What I personally recommend is using google translator."
Soooo you would recommend #4? - OverThere, on 10/12/2007, -1/+8Probably a good read.. if my work didn't block access to the site.
- mobilehavoc, on 10/12/2007, -0/+7Title should read..."Top 10 ways to get your ass fired for being an impatient bastard and not waiting until you get home to visit those blocked sites"
As stated numerous times, you will most likely get into more trouble trying to use anonymizers, VPNs and trying to workaround the blocks that your company has put in place for a ***** REASON. - hypnotiq, on 10/12/2007, -0/+7It's called a reverse DNS lookup and any legit content filter is going to do that otherwise what's the point of URL processing?
And yes proxy's are blocked.
Any person complaining about "no firefox" is failing to understand the role of an administrator to protect the network, which belongs to the company not the users. Firefox has no way of being controlled, proxy controls, etc. While IE does, via group policy. - inactive, on 10/12/2007, -1/+8Not really. It's one of the perks of being a sysadmin (being able to have unfiltered/unrestricted access to the internet). Everyone gets some perk or other in their job, and this is yours.
Makes the pain of getting someone fired for excessive browsing (even though it's monumentally less browsing than you do) much easier to bear :) - gleem, on 10/12/2007, -0/+7@ fintheman....
my job IS to find people who abuse the network. And no.. I do not have a power trip, nor do I care what I can impose on the end user.
bottom line, last year alone my company paid something like $400,000 in overtime pay, people surfing the net for 5 to 6 hours a day, trying to play WoW, etc... Since we put in web and application monitoring software, that cost has gone down a ridiculous amount.
If you come to work to dick around, why come at all. Though I agree that everyone needs a 5 to 15 minute relief from the every day grind... I dont believe that it should be abused.. - raynar, on 10/12/2007, -0/+6Unless they block outgoing VPN, which mine does...but they dont block SSH.
Or, you know...just wait till you get home. - Ellsass, on 11/05/2008, -0/+6@dude3609
1. See parent "...become evident when you visit your site several hundred times a day and it starts moving up to the top of the most accessed site list."
2. Easier said than done. I can't change the IP of my website as I am not the host. On my home machine, with its lowly cable connection, I still can't reliably change the IP as my ISP controls that.
3. It doesn't matter where they are, they keep logs of network connections and use scripts to pull out the "interesting" info.
4. See 3. - shagmin, on 10/12/2007, -0/+6Another thing that might be helpful - some proxy servers son't discriminate against SSL requests. So https://gmail.com may work whereas http://gmail.com won't.
- DiggsOnlyNeoCon, on 10/12/2007, -2/+8I'm with you here... I work at a mega-big company that forces us to use IE. And we can't even upgrade to IE7. Lucky for me, I snuck Opera by them, but I'm hurtin for Firefox.
- dhulser, on 10/12/2007, -1/+6http://duggmirror.com/security/A_Top_10_guide_to_accessing_blocked_websites_from_work
or maybe it's just blocked here... - inactive, on 10/12/2007, -0/+5as an admin i say:
Do NOT try this at work.
If you deliberately use means to evade restrictions placed by the company, you might easely get fired.
Borders are there for a reason.
And DO NOT believe admins are dumb, please.
If an admin is up-to-date with his stuff, he/she will recognize anomyzers, the extended use of google-cache or proxies as well as usage patterns (it`s kinda unlikely, that eg. an acocuntant will spend an hour or so with babelfish…)
If i catch some user doing this on my networks, he/she gets ‘the pepper speech’ the first time (without involving or even noticing their superiors), but the second time they get reported.
Needless to say that i only act on ‘real misuse’ - everyone tries some things, plays around with the borders and tries to bend lines - that´s fine with me, because they then know where those borders are.
I`m fair and understandable, but for delibaretely underminding security i have very little tolerance.
(as a couple of rapidsharers had to discover two weeks ago. The 'pepper speech' fixed them, so noone got hurt :))
an admin
(of a close-government company / social sector) - EtherGnat, on 10/12/2007, -0/+5The kind of thing an idiot would have on his luggage!
- gorilla, on 10/12/2007, -0/+4@raynar: I can't use any portable programs since it won't let me open up unrecognised .exe files.
- DoctorOrpheus, on 10/12/2007, -0/+4I realize that all of you are extremely savvy users and all by the nature of your comments and the fact you read digg ;0 , but do you really want to jeopardize your job by attempting to circumvent company policy? Say what you will about your IT department, but I assure you if a company has invested time and money in a content filtering system no matter how clever you think you are, no matter how silly or draconian you think the filtering is you will eventually be caught. In most medium to large corporations you can be fired for violating IT corporate policy, it doesn't matter if anything bad happened or not, nor will it matter if your manager loves you, or you are the best developer they have, we are all expendable.
Bottom line, whether your IT department is 1 person or 100 may not take kindly to nor find your behavior fun, and ask yourself, who will win if you start a war with sysadmins? The end -user or the department that management reluctantly agrees is necessary in this day and age with all these tubes and internets? - SelfAbortion, on 10/12/2007, -0/+4How to get fired 101
- Hercules, on 10/12/2007, -0/+4Being a sysadmin.... 90% of the businesses out there use a proxy software like Websense or something like it. All it does is download a database of human cataloged sites (and corresponding IPs) and categorize them. The admins (me) can then allow or disallow access based on category. We are pretty free where I am, I am not big into a huge lockdown but trying to use the IP address is usually a futile effort. Proxy sites are always banned too, so why bother? If the company has a block the odds are, they are going to see you trying to do it. And that's reason enough to get fired.
- HardwareLust, on 10/12/2007, -0/+4Best and safest...bring your own laptop and (hopefully) you can leech some wireless...voila! Unrestricted surfing. I just put in a KVM switch, and use my desktop monitor. No one even knows I'm using my own personal machine. If they peek into my cube, it just looks like I'm working. No problems with proxy's or IT or HR or any of that crap. Far as they can tell, I barely if ever use the web from work.
- marklj, on 10/12/2007, -0/+4My job does not block digg (yet), but all other blocked sites are blocked from the domain AND IP address. To add insult to injury AdSense blocks every single proxy site, goodge translator, google cach and a slew of others. The only way I can access any website is through a PHP web script I created (gets all pages via serverside), but this method is limited at best.
- dude3609, on 10/12/2007, -0/+3theres lots of info in the comments though.
- fintheman, on 10/12/2007, -1/+4Also, I've known people who would just bring their laptops in and use a cellular connection.
Or use their laptops and use some random wireless access point that was open.
Heck, some people would even use the phone system and use a dial-up modem.
If you want to get REALLY vicious
Go to http://www.hak5.org/wiki/USB_Switchblade
Use this on your network admin's computer with a USB key that has U3 on it. Copies password hashes / autocompleted passwords, etc., / Just use his account when you surf, chances are, the IT guy is not checking their own logs when they sur
open a SSH port on my home machine on port 443, then use a program called proxytunnel to tunnel an SSH connection to my home machine via the corporate proxy, and enable it as a SOCKS5 proxy on my work machine (well, it was a dev server, actually .
From there it was just a matter of setting programs to use the SOCKS5 proxy, and voila! Free, unfettered access.
Simple way
http://torrify.com
Use a USB key and just use the portable firefox that uses the TOR.
Tanrantella is another option - look it up.
I subscribe to peacfire's email list, they send out a new proxy site every few days, which is good, because they're only good for a few days before the censorware companies add them to their naughty proxy list.
http://peacefire.org/circumventor/
You can also use their circumventor software and surf using your home computer as a proxy.
http://peacefire.org/circumventor/si...tructions.html
Also, most times https://www.stupidcensorship.com usually works. - jstevewhite, on 10/12/2007, -1/+4@brstilson
The problem with the "one size fits all" mentality is that Business doesn't understand the difference between their secretaries and their systems engineers. No one in my group has called IT for anything but hardware problems in five years, but we still have to "work around" their image. It does no good to point out that literally everyone in my group knows, literally, more about computer systems than *anyone* employed by IT (not sour grapes; we're working engineers that support real systems on a daily basis), or to point out that because they're nazis they have to support applications they wouldn't normally have to (IE, our VP says to their VP, "We really do need an Xserver installed on these machines to do our job." So IT goes out and buys some expensive monster like Exceed, hires dedicated support team members (who then end up being the Maytag Repairman - we don't call for support) when we would all rather run Cygwin and CygwinX or Linux at no cost to the company but giving us admin to our own laptops. We end up buying our own hard drives, installing XP or linux, and swapping them out so we can throw their image back in when we need a key replaced or similar. Of course, recently my group got Powerbooks, so my small team is in heaven; there are still a lot of people in Engineering that are still screwed.
- Markie1006, on 10/12/2007, -0/+3dpcdomino:
IE is probably pointing to a .pac automatic configuration script which configures it for a proxy.
Copy the .pac URL from IE's settings and paste it into Firefox (that will return you the proxy settings)
Then just make sure your proxy settings are correct in Firefox - inactive, on 10/12/2007, -0/+3If a company has strict web-access policies, there are chances that installing software yourself is also strictly regulated :)
If caught, you probably are in truly hardcore trouble more than twice:
- for installing software by yourself
- for accessing prohibited webpages
- for trying to evade security policy
- for wasting company paid work hours.
Geeze, guys - is a webpage really worth it? Can someone not live without it until beeing at home? - krolls, on 10/12/2007, -0/+3Gotta love working at a tech company where one of my jobs as an intern is to keep an eye on all the tech news sites ;-)
- dpcdomino, on 10/12/2007, -0/+3I have Firefox....it will just not connect to any websites unless it runs as an IE window. They blocked Firefox from accessing the web.
- Manc, on 10/12/2007, -0/+3Using RDP to connect to your home computer is unlikely to work, any company using url filtering, will also be running a firewall, you wont get out on 3389.
All you are acheiving is opening up your home computer to attack.
Also if youplace your IP in a DMZ,its pointles opening up port 3389 and having your firewall turned on, as its unprotected.
Yes, Im a sysadmin, I block sites. It's my job. The company is perfectly at liberty to state what purposes the computers are used for, they own the equipment, they pay for the bandwidth,they pay you to be at work, doing what you're paid to do. If you dont like your work conditions...leave, sit at home, on benefits and surf to your hearts content. - jstevewhite, on 10/12/2007, -1/+3Most reliable method = run up an ssh server at home on port 443, run up a proxy at home, ssh to ssh server on 443, tunnel, say, port 3128 to the proxy, and set your Firefox proxy (use portable firefox if necessary) to use 127.0.0.1:443. All traffic is encrypted, and unlike using https, it can't be MIM by your admin (me). Most web proxies just hand off https without munging it. If they use deep packet inspection on the firewall on port 443, this method won't work; but using an https proxy at home may get you in trouble as well if they use man-in-the-middle stuff (since they own your platform, they can have their own CA authorize their bogus cert).
Another much safer alternative is to purchase an aircard - EVDO or similar. Connect directly to internet and disconnect from your company's network for the duration (perhaps use your own laptop). Safer for your company, safer for you (you'll usually get a "don't bring that in here anymore", whereas you might have gotten canned directly for circumventing your Company's internet policy).
It can't be emphasized enough that using ANY of these techniques can get you fired. If it bothers you that much, folks, get a new job. Many jobs - like mine - require virtually unrestricted internet access as part of my work. - inactive, on 10/12/2007, -0/+2short answer: yes.
And there are very good chances you trigger an IDS on the inside which will generate an security alert. - clesters, on 10/12/2007, -0/+2I like the SSH method with the quickproxy extension for firefox.
http://www.bsdzone.net/weblog/archives/2005/01/24/port-forwarding/ - RuffRidr, on 10/12/2007, -0/+2TorPark is very noisy. A lot of companies are now putting log aggregators in place. These aggregators look for certain thresholds to be met, and then alert on them. One we have in place here is firewall drops in a period of time. Tor and Torpark set this one off in no time.
- pabster, on 10/12/2007, -0/+2@fintheman
That's a great how-to, but you incorrectly state that you would have a secure connection. That's not true.
RDP provides no encryption. Everything is sent in the open.
You can tunnel RDP through SSH or a VPN solution, of course, but as is RDP provides no security. - designery, on 10/12/2007, -0/+2You're lucky you have a job. Don't blow it by doing dumb ***** like this. They will know!
I like digg. I will miss it when it's blocked. :( - dude3609, on 10/12/2007, -1/+3if you cant trust your employees to browsing the internet then maybe your workforce isnt good enough.
- 0KonTroL0, on 10/12/2007, -0/+2@fintheman:
A war huh? Ever think that we just don't do what we want and there are acually people above us? We do what we are told just like you. - Markie1006, on 10/12/2007, -0/+2Please for the love of god, it's VOILA (NOT walla, wallah or anything else!)
-
Show 51 - 100 of 125 discussions
The Digg Toolbar for Firefox lets you Digg, submit content, and keep track of Digg even when you're not on the Digg site. Download the official 
© Digg Inc. 2009
— Content created and posted by Digg users is