Curtis Vaughan wrote: > We have an issue where management wants to monitor possible leaks > through the use of Hotmail, etc. web-based email accounts. They do > not want to just prohibit usage of such accounts. So, the question > is, using SQUID, is it possible to cache what information employees > are passing through such accounts, even if they are https?
Enabling log_mime_headers in squid.conf will log the POST data (along with ALL the other HTTP headers), which is probably how messages are composed and sent, but even that won't help with HTTPS. For HTTPS, you will need some sort of monitoring app on the workstations themselves. And, as has already been pointed out, management needs to make sure it is on sound legal ground in whatever monitoring actions it takes. Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
