SonicWall's software is no different and vulnerable just as described. If =
you have a SW firewall device you can purchase a one-time upgrade to add th=
e DPI-SSL feature (deep packet inspection - secure socket layer) this allow=
s the SW to decrypt content, apply filtering policies, and re-encrypt secur=
e traffic. It does create some practical issues that need to be worked aro=
und and dealt with, but the alternative of not really filtering your Intern=
et is not really a good option (if your school believes in filtering).
John Caballero
-----Original Message-----
From: A forum for independent school educators [mailto:ISED-L@LISTSERV.SYR.=
EDU] On Behalf Of Doug Fodeman
Sent: Sunday, November 21, 2010 11:26 AM
To: ISED-L@LISTSERV.SYR.EDU
Subject: Re: Security hole in your school filters
Dear ISED members,
If your school chooses to block the student use of Facebook or other social=
networks on your campus, read on.....
This fall ChildrenOnline.org has been conducting 1000's of surveys of stude=
nts about their online behavior. I wanted to let you know that from every =
school we have collected data, the students are reporting that they have a =
way of getting around the school filter to access sites like Facebook. I e=
ven discovered this simple "work-around" at my school early last spring. (W=
e have St. Bernard's iPrism content filter.)
You might block Facebook.com but the kids have discovered that such a block=
is ONLY good for the http protocol and does not block https. So instead o=
f using http, the students can simply type https://www.facebook.com and acc=
ess their FB accounts. This will also be the case at other sites that allo=
w the https protocol. (Does Formspring.me use https?)
I don't know if this by-pass works to get around a SonicWall policy when th=
at Sonicwall is also the main firewall that stands between the Internet and=
the school. The work-around seems to work best when a school has a firewa=
ll on the network in "proxy mode". By the way, if your school has cell-pho=
ne service, the kids can also access their Facebook accounts through their =
smartphones such as the iPhone.
Never a dull moment.
Doug Fodeman
Co-Director, ChildrenOnline.org
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D
Douglas Fodeman
Director of Technology
Brookwood School
Manchester, MA 01944
http://www.Brookwood.edu
(978) 526-4500 X6233
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D
[ For info on ISED-L see https://www.gds.org/podium/default.aspx?t=3D128874=
] Submissions to ISED-L are released under a creative commons, attribution=
, non-commercial, share-alike license.
RSS Feed, http://listserv.syr.edu/scripts/wa.exe?RSS&L=3DISED-L
[ For info on ISED-L see https://www.gds.org/podium/default.aspx?t=3D128874 ]
Submissions to ISED-L are released under a creative commons, attribution, non-commercial, share-alike license.
RSS Feed, http://listserv.syr.edu/scripts/wa.exe?RSS&L=3DISED-L
