Blocking malicious domains using Squid

Squid has to be my all-time favourite open source project. I’ve used it extensively in my own projects, and Squid formed a key part of my lecturing to finalists in my spell as an academic and consultant. Every student that finished my final year networks course would have encountered my Squid build worksheet!

One of the nice features of Squid is the extensibility of the platform, the quality of the product, and clarity of configuration files. Combining Squid with some scripts can lead to some interesting security solutions. In this blog post I’m going to talk about how Squid can be used to block malicious domains, using dynamic data downloaded from the Internet and some very simple scripting.

Continue reading “Blocking malicious domains using Squid”

Encouraging strong cyber security practices by employees: the first line of defence

End users are one of the key battlegrounds between organisational security initiatives and hackers.

Phishing, malware-laden email, and fileless attacks are some of the most widespread attack vectors, making end-users the first line of defence.

The SANS Ouch! Newsletter is issued monthly from SANS and provides some good quality guidance on topical issues in cyber security. Most importantly it is written in a way that non-specialists can understand and apply.

Adopting your own organisational bulletins on security, or even including them as part of a larger publicity programme, can make a big difference to organisational cyber health.