Assuming you can get at the desktop to proxy him (or set it up via GPO), then there's a SQUID Virtual Machine over in the VMWare appliance repo that we've used in the past.
It's a half hour setup max. I would recommend issuing his workstation a static IP before commencing the collection of any forensic data server-side. It's too easy to cast a 'reasonable doubt' on who's workstation is who's in a DHCP environment. Jon TekBudda wrote: > Hi All, > > I have been asked to monitor the websites that a particualr user on our > network goes to. I need to collect the proper evidence to build a case > for a possible dismissal. > > Can anyone suggest a good software perferably open source that owuld do > this? I don't need a keystroke logger or anything like that, but > obviously the fuller the toolset the better. > > The desktop is a Windows XP & the Server is 2003 SBS, so something that > runs from either would be great. > > I have not had a chance to look online yet, as this was just handed to > me today ad needs to happen ASAP. > > Please contact me offlist. > > Cameron > > _______________________________________________ > clug-talk mailing list > [email protected] > http://clug.ca/mailman/listinfo/clug-talk_clug.ca > Mailing List Guidelines (http://clug.ca/ml_guidelines.php) > **Please remove these lines when replying > -- Key fingerprint: BDE0 DE52 B8C0 0CDF 7653 E5A2 D861 7877 0D3B 813E http://www.jonwatson.ca "Trying to learn to hack on a DOS or Windows machine or under MacOS is like trying to learn to dance while wearing a body cast" - ESR _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
