Hi,
In a novell network, a person login to the local NT workstation acc with internet access, can the server trace what the web site the user went?
Printable View
Hi,
In a novell network, a person login to the local NT workstation acc with internet access, can the server trace what the web site the user went?
Yes. The firewall tends to take care of that. By Novell network, I'm assuming they are using BorderManager Firewall, which has a nice logging feature of all websites visited by all users. :D
In order to log in though to novell workstation...it needs to have novell workstation manager installed on it...otherwise u cannot just log in with an novell account, it will ask u for a computer username and password. I find that often a computer installed with Novell on a NT system NTSetup works fine but thats just here. Ms. Mittens is right u should have a lil icon of a red key in the bottom tray, thats ur client trust and that certifies u to get access to the web and ur pretty much logged. Do u have an account on the novell network?
Erm.. i'm sorry.. maybe i just din phrase y question properly..
Ok.. the senerio is like this.. i have a Novell Acc and a Local NT Workstation Acc.. so duing a login.. i onli login to the Local Workstation instead of the Network(Novell).. in this case.. if i surf a site.. can the server or anything can trace where i surf?
what happen when a user login to Novell's Network? as in the IP Address and DHCP issue.. will the PC get an IP Address even it did not login to Novell Acc? Or, it will onli get an IP Address onli after he/she login to the Novell Acc..
IF the PC gets an IP Address from the DHCP b4 it login into the Novell.. then i guess there is some form of tracing user distination.. Am i right?
If there is no firewall, then it won't matter as it won't be necessarily logged. The answer is still yes. The firewall doesn't care where you logged into. It still records whoever and wherever they go. So the question is... is there a firewall?
Quick answer is 'right'. I can trace your movements based on your IP, it makes it a little harder, but it can still be done.Quote:
Originally posted here by Penguin
IF the PC gets an IP Address from the DHCP b4 it login into the Novell.. then i guess there is some form of tracing user distination.. Am i right?
Cheers:
What about with Citrix metaframe?? same senario?
what u meant a little harder? if i can see the IP, i will sure be able to see the computer name.. and since company will give the computer a name when they bought the PCs then i guess it would not be a problem. Of course unless the firewall did not config to log the PC name.. Am I correct? :pQuote:
Originally posted here by DjM
Quick answer is 'right'. I can trace your movements based on your IP, it makes it a little harder, but it can still be done.
Cheers:
there is a firewall.. and what if there is no firewall? what happen next? :DQuote:
Originally posted here by MsMittens
If there is no firewall, then it won't matter as it won't be necessarily logged. The answer is still yes. The firewall doesn't care where you logged into. It still records whoever and wherever they go. So the question is... is there a firewall?
Hi Penguin, I am probably not understanding you?
You say you can log into the Novell Network...OK if you then surf the internet you can, and probably are being traced.
If you log into the local NT Workstation and connect to the internet you may well be using a local modem? If it is a dial-up modem connecting direct to the ISP, then it is probably not being traced (other than by the keylogger and wiretap that I installed last Thursday :D ...sorry, only joking)
I recall this kind of setup from a few years ago. We had a network that was high speed, but somewhat unreliable, so some people also had a dial-up modem to use if the network crashed. It was much slower, but more reliable :)
If you are using a local modem, you should hear some distinctive noises when you connect via the NT workstation. I would expext the Novell connection to be silent.
Is this the situation that you have?
Cheers
It could still be traced. Via the Router. There is always a record somewhere but that depends on the full network design and what components are on there.Quote:
and what if there is no firewall? what happen next?
And you just described the "little harder" part. If you log on, I have your userid, it's pretty much a no-brainier at that point, I know what your doing and who you are. If you don't log on, I have to grab the IP address, match that back to a mac address & computer name (in our shop, computer names are pretty generic, but they do mean something). With this information, I then have to see who that computer was assigned to, often I will have to go to the office to verify, as computers seem to move around a lot without support being notified. Now that just a lot of hassle to give you **** for surfing porn on company time.Quote:
Originally posted here by Penguin
what u meant a little harder? if i can see the IP, i will sure be able to see the computer name.. and since company will give the computer a name when they bought the PCs then i guess it would not be a problem. Of course unless the firewall did not config to log the PC name.. Am I correct? :p
Cheers:
there is no modem in this senerio.. the PCs is always connected to the LAN.. so now the issue is.. Tracing user internet usage.. where he go, etc.. and 2 situations.. a person who login to Novell Network and a person who ONLY login to local NT Workstation user acc.. as simple as that..Quote:
Originally posted here by nihil
Hi Penguin, I am probably not understanding you?
You say you can log into the Novell Network...OK if you then surf the internet you can, and probably are being traced.
If you log into the local NT Workstation and connect to the internet you may well be using a local modem? If it is a dial-up modem connecting direct to the ISP, then it is probably not being traced (other than by the keylogger and wiretap that I installed last Thursday :D ...sorry, only joking)
I recall this kind of setup from a few years ago. We had a network that was high speed, but somewhat unreliable, so some people also had a dial-up modem to use if the network crashed. It was much slower, but more reliable :)
If you are using a local modem, you should hear some distinctive noises when you connect via the NT workstation. I would expext the Novell connection to be silent.
Is this the situation that you have?
Cheers
Well I don't know if this would work for you, but in our shop, everyone that wants to access the internet (logged on or not) must authenticate to the firewall, (userids & passwords are checked against the novell nds). Once authenticated, they are allowed to surf and I can track everywhere they go via their userid & my firewall log reporting tool.Quote:
Originally posted here by Penguin
there is no modem in this senerio.. the PCs is always connected to the LAN.. so now the issue is.. Tracing user internet usage.. where he go, etc.. and 2 situations.. a person who login to Novell Network and a person who ONLY login to local NT Workstation user acc.. as simple as that..
Cheers:
how do u config ur firewall? and what brand and type of firewall using? CheckPoint? :confused:Quote:
Originally posted here by DjM
Well I don't know if this would work for you, but in our shop, everyone that wants to access the internet (logged on or not) must authenticate to the firewall, (userids & passwords are checked against the novell nds). Once authenticated, they are allowed to surf and I can track everywhere they go via their userid & my firewall log reporting tool.
Cheers:
Yea, it is Checkpoint NG. I can't go into much detail about my firewall config for a couple of reasons, but in short. We have authentication turned on for outbound HTTP, HTTPS & FTP (couple of others I can't remember). When a user goes to hit a web site the are challenged for a userid & password, which is their Novell userid & password, now there is a checkpoint plugin that is hooked into the Novell NDS and validates the userid and password and then allows the user out. Now everything the user does on the net is logged against his/her userid in the checkpoint firewall logs. I also use a product call Firewall Suite from webtrends which I can use to create meaningful reports from the firewall logs (much better than showing management the raw firewall log).Quote:
Originally posted here by Penguin
how do u config ur firewall? and what brand and type of firewall using? CheckPoint? :confused:
If your a checkpoint shop and want a little more info, PM me and I'll see what I can do, or give your checkpoint rep. a call and tell him/her what you want to do and get his/her help.
Cheers:
i think the authentication way is a good way to warn user in some way.. telling them "hey, u have keyed in your userid and password, so i know who r u and where u went".. so user will not go to those 'un-authoried' web-site..Quote:
Originally posted here by DjM
Yea, it is Checkpoint NG. I can't go into much detail about my firewall config for a couple of reasons, but in short. We have authentication turned on for outbound HTTP, HTTPS & FTP (couple of others I can't remember). When a user goes to hit a web site the are challenged for a userid & password, which is their Novell userid & password, now there is a checkpoint plugin that is hooked into the Novell NDS and validates the userid and password and then allows the user out. Now everything the user does on the net is logged against his/her userid in the checkpoint firewall logs. I also use a product call Firewall Suite from webtrends which I can use to create meaningful reports from the firewall logs (much better than showing management the raw firewall log).
If your a checkpoint shop and want a little more info, PM me and I'll see what I can do, or give your checkpoint rep. a call and tell him/her what you want to do and get his/her help.
Cheers:
anyway thanks DjM, i appreciate ur help for answering my question patiently.. :D