Any way to block https as well

Discussion in 'ESET NOD32 Antivirus' started by jaytat77, Jan 20, 2012.

Thread Status:
Not open for further replies.
  1. jaytat77

    jaytat77 Registered Member

    Joined:
    Jan 20, 2012
    Posts:
    1
    Location:
    United States
    I am blocking a bunch of sites at my office using the http filter. I can block facebook and that seems to work in all aspects except for https. The users can still access facebook if they use https://facebook.com

    Any way to block https as well besides redirecting the domain on my dns server?

    Thanks,

    Jay
     
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,956
    Location:
    Somethingshire
  3. Fidelius

    Fidelius Registered Member

    Joined:
    Oct 2, 2006
    Posts:
    146
    Edit the hosts file and add these 2 lines :
    127.0.0.1 www.facebook.com
    127.0.0.1 facebook.com
     
  4. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    Enable SSL scanning.
     
  5. cessco_usa

    cessco_usa Registered Member

    Joined:
    Dec 7, 2011
    Posts:
    1
    Location:
    United States
    I am also attempting to fully block work access to facebook, without luck.
    We have a 30-pc network with NOD32 on the server and ESET SS 4 on each workstation controlled by remote administrator console.

    Like jaytat77, I can block facebook.com but the wildcards * and ? don't seem to work for blocking access from an email link or through the https://facebook.com login page

    Enabling SSL scanning, suggested by Marcos, disabled access to all HTTPS sites, including our credit card processing system.

    Why isn't this as simple as HTTP address management? I've created a list and send it to all clients, but can only block HTTP, not HTTPS.

    Thanks in advance.
     
  6. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    Set the SSL scanner to "Ask about non-visited sites (exclusions can be set)" if you have a problem accessing a particular website and exclude the certificate so that the communication utilizing the certificate will not be scanned.

    That's because without SSL scanning enabled, the scanner doesn't know the url address of secured sites you access.
     
Thread Status:
Not open for further replies.