-
June 21st, 2007, 01:14 AM
#1
Need a corporate Keylogger!!!
Okay my friends company wants to monitor all the things EVERYONE does and people are not just on the lan there are a lot of onsite people. Does anyone know of a keylogger that can send the data securely via anything secure such as ssl, https, or sftp? Oh yeah they want a solution for monday lol...
-
June 21st, 2007, 01:29 AM
#2
and people are not just on the lan there are a lot of onsite people.
Don't you mean "offsite"?
I don't like the basic keylogger solution for a corporate environment of any size. What you find is that you generate far too much data to analyse.
I personally favour using network, internet and application monitoring & analysis tools (they tend to have better analysis options and reporting tools) and manage by exception.
Identify potential problem areas and then consider deploying a keylogger on the much more manageable volumes of data, if needs be.
-
June 21st, 2007, 01:35 AM
#3
Ive been talking to him and they want A LOT of stuff. Not only do they insist on a keylogger that can take screen shots and all the extra stuff but they do want it to send securely back to their server no matter where they are...
-
June 21st, 2007, 02:39 AM
#4
Assuming that the remote PCs are connected to the LAN on a regular basis this might be a solution:
http://www.spectorcne.com/
Otherwise they will probably have to use two applications.
As far as security is concerned, most of these things work by encrypting and password protecting the log files. I don't know of any that actually look for a secure link.
-
June 21st, 2007, 08:25 AM
#5
IMO keyloggers are never a good idea. Better talk them out of it. As nihil says use the network. Setup proxy servers, IDS and a good firewall policy. Turn up auditing on windows clients. If done properly you can pretty much see everything without the need for something as "invasive" as a keylogger.
Don't loose sight of the privacy laws too. Some of this may even be against the law.
Oliver's Law:
Experience is something you don't get until just after you need it.
-
June 21st, 2007, 11:26 AM
#6
The reason that doesnt work nihil is because they have some laptops that never or rarely end up on their lan.
and ya...they insist on what they insist on I cant really convince them otherwise. I told them also if they setup a proxy to monitor all web traffic it would be more then enough. If there is suspcious activity then you can confront them but I personally think they are going to far.
Unless anyone knows of such an application I will assume one does not exist. Thanks for the input guys!!!
-
June 21st, 2007, 11:37 AM
#7
If the company I worked for did something like this... I'd turn in my resignation and leak it to the local newspaper so all my coworkers would know. I'm sure a lot of them would also not want to work for a company that has such practices.
Just to be clear, I'm talking about me as an end user. I can understand monitoring web usage for policy violations or to increase productivity. I can understand journaling emails. However, to intercept every keystroke of every employee seems absurd to me on so many levels. If there was an employee who they could not trust, then fire them. Or, gather enough evidence that they can't be trusted via keyloggers, etc. then fire them or prosecute them if they're breaking the law. It just seems like a HUGE ABUSE of "power".
I wonder if this policy would apply to even top level execs or if the board of directors/shareholders would support it if they knew about it.
Last edited by phishphreek; June 21st, 2007 at 12:12 PM.
Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.
-
June 21st, 2007, 02:26 PM
#8
The reason that doesnt work nihil is because they have some laptops that never or rarely end up on their lan.
In which case they cannot be mission critical and can safely be ignored. If they were in any way significant they would have to connect to the corporate mail server for e-mails and for a regular health check to ensure that the OS, applications and anti-malware were up to date and functioning, unless..............
What kind of industry is this? ....................................
-
June 21st, 2007, 02:38 PM
#9
I know my friend is a system admin and I know he works in the warehouse but I dont know what kind of place it is.
And phish I couldnt agree with you more.
-
June 21st, 2007, 03:46 PM
#10
Hmmmm, I wonder about the significance of these "stand alone" laptops?
Your normal security model would suggest that you protect your LAN and the clients that attach to it. This secures your business against attack rather than just indicating where staff are doing improper things.
A valid solution does not have to be 100% so long as it covers the core business?
A keylogger is an overhead and generally a waste of resources if deployed as suggested. You waste far too much on monitoring people doing their normal jobs, which is of no interest whatsoever.
The whole idea is totally uneconomical. 1000 seats = $50,000 + $10,000 support contract costs = $60,000.
Doing it properly would only take $600, because if they haven't got the hint after you have shot the first 10, you have a serious HR problem
I am not surprised that the kind of software they envisage is not available........... there is no market to support it?
Similar Threads
-
By earthbound4u in forum Network Security Discussions
Replies: 18
Last Post: December 5th, 2006, 10:43 PM
-
By Tiger Shark in forum Microsoft Security Discussions
Replies: 5
Last Post: January 14th, 2005, 08:47 PM
-
By eaz135 in forum AntiOnline's General Chit Chat
Replies: 1
Last Post: April 13th, 2003, 04:04 AM
-
By khakisrule in forum Microsoft Security Discussions
Replies: 15
Last Post: July 26th, 2002, 12:43 AM
-
By GreekGoddess in forum Cosmos
Replies: 11
Last Post: June 23rd, 2002, 04:24 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|