logging into terb from work

[slick_romeo]

i'm hoping the more computer savvy terbites can help me understand the risk of discovery i'm subjecting myself to.

Primer:

i find myself checking into terb from work quite often lately.

i know most offices are equipped with sensoring software to detect/restrict access to x-rated sites.

i don't seem to be limited this way, as i'm able to hit any site/link i have an address for.

Situation:

ideally i should do my surfing at home exclusively, but when the drudgery/boredom sets in @ work, reading threads on this board has become an entertaining distraction.

to date we've all received a code-of-conduct communication outlawing use of the internet for purposes such as mine...(no kidding..)

obviously the communiaction went in one ear & out the other & nothing has come of it yet...which has me really curious - just an empty scare tactic?

never-the-less i clean my internet history cache regularly, but i'm not too sure how effective a measure this is...


Techy advice:

can someone (Fred...) give me some idea of what kind of set-up they may have in place here?...my IT knowledge is limited, so comments provided in lay-man terms would be greatly appreciated.

 

[zoickss]

Some companies will install monitoring software on the network/computers - this software can allow them to monitor what exactly is on your screen - record keystrokes, log any website visited and also show how much time was spent at each site. If they sent a warning it might be just a scare tactic - but on a company network personally I wouldn't take the chance. I don't know how common this is here in Canada but in the US alot of corps are going that way. A good friend of mine is an IT head of a large company and recently they had him put this type of software on there systems (over the weekend when no one else is allowed in the facility) Also just cleaning the cache isn't good enough - even though you can't see it on your system - software can recover the deleted data (or portions of it) so if they suspect you they just have to run a simple little program, and bang - your busted.

 

[revolver]

I never surf on Terb or any site like it from work. We have a similar policy to yours I think. We are even blocked from visiting the Lottery Canada site. You may want to read this article (link below) about hidden files that are stored on your drive by Microsoft. Clearing your cache doesn't get rid of everything.

article

 

[Han Solo]

You don't even need to have software installed on the workstations, if you have a firewall which if its an office I am sure you do, even though it is probably transparent to you. They can log what sites you visit, the exact time/date you are there. Which can all be traced back to you via your IP address and MAC address.

So no you can't be 100% secure unless you have complete control over your workstation, network, and router. Which unless you are the network admin, you probably don't.

If you are worried best to wait until you get home.

Dan

 

[duncecap]

Well, the fact that they haven't talked to you about this yet either means they don't care if you surf Terb from work or that they don't check up on their employees like some companies. But still, if they do ever decide to do some investigating it would be very easy for them to catch you anytime you surf through the corp network. Clearing your history will only help in that if someone jumps on your computer innocently they won't have it shoved in their face that you've been surfing Terb. If a company if checking out your computer though then you've most probably already been caught and they just want more evidence to make a case against you. Sorry slick, but it may be wise to leave Terb at home

 

[Blackball]

There are ways to make it look as though you aren't surfing the sites you are. Most of these ways involve having access to a computer with a permanent connection to the Internet, such as your home PC with a cable modem or DSL line.

While there's nothing you can do to stop your employer from monitoring your surfing habits, you can make it quite difficult for them to truly track down where you're going on the 'Net.

This being said, you are still best to leave Terb alone during work hours. All it takes is someone walking past your desk and seeing one of the banner ads with a naked woman in it, and you're toast. A complaint from a female (or male for that matter) co-worker will almost definately be taken very seriously, and result in a search of the logs related to your workstation. Once they bother to make the effort to track down what sites you have been visiting, you'll be in the pogey line faster than you can blink.

BB

 

[LoveThemGirls]

At my work a bunch of people were let go recently for inappropriate surfing, and our company also has a code of conduct that you have to sign that says you will not use the internet to surf for porn, violence, hate groups, etc. You do not need any special software to see what the users are surfing. As was mentioned earlier, if your company has a firewall/proxy server, they track every single site that you visit, which is how those people were caught. The were monitored over a period of a few months and only those that were surfing porn daily were let go, many more were given warnings. However, they were browsing xxx sex sites and downloading pictures and videos, and I'm not sure if a message board such as Terb would classify as being as serious.

Another method that the network administrator can do is set up your profile in the user manager that shoots back all your temp internet files and cookies back to the server every time you log off, and yes we do that also. Bottom line is, there is absolutely no way to tell if you are being monitored or not, and chances are that if you signed that agreement that someone is watching for inappropriate sites appearing on their proxy server. But I ask you guys, is terb considered porn? I don't think so.

 

[Han Solo]

Another method that the network administrator can do is set up your profile in the user manager that shoots back all your temp internet files and cookies back to the server every time you log off, and yes we do that also.

Lovethemgirls: You don`t even need to do this, as long all the computers in your office are networked, you can grab the packets as soon they leave your network card. It is not that compilcated to do. With the right software installed on your gateway they could also see how much time you spend surfing, what sites you go to, and exactly when you do it.

Remember http trafic is not encrypted, and even if you could view https://terb.cc with a SSL, they would still be able to see that you are on the site, just not what you are doing.

Unless you have access to a offisite neutral proxy server to bounce threw, or a shell server if you want to browse with lynx I wouldn`t spend much time browsing terb at work.

Dan

 

[Paul Waters]

i`m hoping the more computer savvy terbites can help me understand the risk of discovery i`m subjecting myself to.

i find myself checking into terb from work quite often lately.

i don`t seem to be limited this way, as i`m able to hit any site/link i have an address for.

to date we`ve all received a code-of-conduct communication outlawing use of the internet for purposes such as mine...(no kidding..)

obviously the communiaction went in one ear & out the other & nothing has come of it yet...which has me really curious - just an empty scare tactic?

Stop it immediately. I cannot emphasize this too strongly.

They have a firewall. Every DNS lookup, that is, how https://terb.cc is resolved to the ip address is logged. These logs are saved.

Just because no one is looking at them now, does not mean that they will not in the future.

If at some time they want to fire your ass, they will have the logs searched. You have given them grounds for dismisal with cause. Especially since they released the policy.

Stop it, and pray the logs are discarded before they have a reason to go after you.

There are technical means to evade detection, but you need a home set-up and a high skill level.

Good luck

 

[Toad-O-Line]

I have worked at a couple of companies where the IT manager has had to report to me.

Here's the scoop - They know exactly where everyone is surfing - I've even sat in the server room with the IT manager & watched live where people are surfing whether it is porn sites, hotmail or chat rooms (Geez! We read people's chat mail conversations, read their hotmails and were able to track who was looking for a job!!!) This process is referred to as ghosting. You ARE being watched.

There are a few things you can do:

* Make friends with the IT manager & disclose your surfing habits. Buy him/her a drink and you're in.

* Tell your IT manager that you surf these sites and you enjoy it - Chances are they won't give a shit.

* Stop surfing at work.

Best of luck!

 

[WoodPeckr]

Big Brother is Watching......

Best not to use work computers for personal surfing.

My corp also had all workers read and sign a code of conduct...."loyalty oath." Basically said corporate computers were only to be used for work period! A few employees made light of it, and were let go for violating it a few months later. There was a downsizing at the same time, and the logged violations just made it so much easier to fire these people.

Big Brother Is Here .....and it ain`t the Commies.....it`s the Corporations......

 

[daty]

at our place

they even monitor e-mail

I have NEVER sent any questionable material out but have recieved it from coworkers...i was called in for RECIEVING this stuff and i responded that if that was the case i would block internal mail as this was the worst source.
They acknowledged that I had not SENT any but they say that it is up to each of us to inform external sources that we can't get the "good" stuff .... again i had never got anything from outside sources... on the flip side i was complimented for keeping my surfing to business related matters ...for the most part !!!

this is a small company of 65 employees of those we all have e-mail but less than 50 internet

those IT dudes may wear dark glasses but they are watching cover your own butt as no one else will and document your own use...this is a new area of "big brother" and it will only gain speed as previously mentioned downsizing made easy or "for dummies"....one last thing ...just cause=no employment insurance
(they used to call it UIC)

 

[kilohurts]

Terminal Server/PCA/Back Orifice

This should help if you have a dedicated connection at home:

Install some type of remote control software and connect through to your home PC. Surf directly from your PC desktop.

IT could still sniff your packets, but you are making it more difficult. Most remote control software offer better encryption than the standard 128bit and you are not going out on standard ports, though that might trigger some red lights with the IT dude/dudette(s).

The best bet is, just wait out the down time till you get home!

Kilo.

 

[rolo514]

Doesnt software like windows washer or internet eraser work???
curious,
rolo

 

[slick_romeo]

Many Thanks

to everyone for the information...i have opted to heed warnings & fly strictly by night!

 

[james t kirk]

I remember about 4 years ago, i discovered terb's predecessor at work. (I didn't have the internet at home.) I was a really primitive review board that was really hard to read, but it was all there.

I was forwarded an email by our former IT guy saying that I should review a copy of our company's IT policy and limit my use accordingly.

I don't know enough about the technical issues in previous threads, but I do know enough not to surf any questionable sites at work.

My company is pretty humane about email and internet policy. No-one has ever been fired for it, but every once in a while, they send out warnings.

Thing is, our current IT guy is one of us. We send him the off-colour emails and he even sends his to us. By keeping him in the loop, i hope that it ensures his co-operation on this exact issue.

I personally feel emails are totally harmless, but I guess if they are paying you to work, they get upset if they see you logged onto TERB at work for 2 or 3 hours.

The only thing I ever surf at work is the stock sites to check where the markets are going (usually south to hell), and maybe MSN or canoe.

They don't get wound up about those.