M.Siler said:
Yes, I'm the admin and I wanted to try to stop this in our firewall. I was
thinking that there was some ports that I could block.
It seems that from a business stand point this would be a fairly common
request. Is there a list of what you listed and others for yahoo & aol
and others?
You need to make your users not part of the admin group. Also, don't use
win95/98/me at work: first off, they're meant for home use. Second, users
are admins as a default. Not a good idea. If they can't install it, they
can't log on, can they?
Also, you need to be thinking security. Win2k is the best in my opinion,
but they pale in comparison to linux/unix. If you've noticed, few if any
linux/unix security vulnerabilities arise from user programs: most of those
are server based, which can be easily fixed, and which your users won't be
using in the first place.
Also, write an agreement that each and every user must sign: something that
they agree to not install programs without your consent. Most hacks these
days come from within. Don't give out the admin password, etc, etc, etc.