Understanding Website Categorization in GFI WebMonitor
GFI WebMonitor is robust web filtering, web monitoring and web security solution, that provides administrators with more than 70 categories of websites from which to choose and provide granular flexibility when applying policies. However, how many of us really understand what these categories mean, how they are used and which ones we should choose and base our policies on?
The first category of websites you would typically want to block would be “Adult and Pornography”, and this is what most people do. However, there are other categories which are less obvious but just as important and which you could (and probably should) use to apply different types of policies. Did you know that unless you block “Proxy Avoid and Anonymizers”, users can quickly outsmart your efforts to monitor and filter, and possibly expose the network to web threats and other risks?
Here are a few categories which can be used to define various types policies, based on different needs and pain points. It should be noted that these categories and recommendations are generic in nature, rather than a complete or definite way of creating policies.
1. Productivity Loss: These are sites that users can lose track of the amount of time spent on them. Instead of blocking them completely, these sites are perfect candidates for a browsing threshold quota:
- Auctions – grab that bargain! Sites such as eBay can be huge time hogs.
- Dating – maybe the workplace is not the right place to spend time to find your soul mate, or repair a broken heart.
- Gambling / Games – your boss would not be very happy if he found out you were spending a lot of time on these online activities.
- Pay to surf – you’re already getting paid, probably not to surf though.
- Social Networks – social networking addiction – do you suffer from F.A.D. (Facebook Addiction Disorder)?
There are other categories that have great potential as productivity losers (Entertainment, Music, Sports, Shopping, Travel, Recreation and Hobbies); however, you want to increase productivity and not create a strict policy which fuels resentment among employees. In the same manner as you wouldn’t want to eliminate cigarette breaks, a limited amount of leisure surfing can be healthy.
2. Security: Your web filtering policies can also be used to improve and maintain a high level of security on your network. It is recommended that these categories of websites are blocked to increase browsing security:
- Malware Sites – these are websites which are known to distribute malicious content.
- Phishing and Other Frauds – confirmed phishing sites and other fraudulent websites.
- Spyware and Adware – sites which distribute software which is gathering information or tracking a user without their consent.
- Bot Nets – compromised URLs or IP addresses from where network attacks can be launched.
- Confirmed spam Sources / spam URLs – sites which either originate spam or which are advertised using spam.
- Hacking – sites which develop or distribute hacking software or tools.
- Proxy Avoid and Anonymizers / Open HTTP Proxies – these are typically used by individuals who are trying to bypass the web filtering software.
3. Bandwidth Hogs: A number of websites can cause serious bandwidth issues if not properly controlled:
- Online Personal Storage – these sites tend to host large file downloads such as TV series, movies and music. There are better ways of saturating your company’s bandwidth.
- Streaming Media – sites hosting TV, radio streams or online video (YouTube). A few users streaming internet radio can quickly overwhelm the Internet connection. These include downloads which you to tend to forget to switch off when you “go for a meeting”.
- Peer-2-Peer – torrents, torrent clients and other peer-to-peer content.
4. Warning Flags: These categories, even if left unblocked, may cause problems for an organization if accessed during office hours. Administrators should be aware of the risks, including legal liability:
- Abused Drugs / Marijuana – repeated access to these sites by individuals should be flagged.
- Weapons – employees found accessing weapons sites, especially in locations where firearms may not be legally permitted, may require additional monitoring.
- Questionable – sites which promote hostility, harm towards groups or individuals, race or ethnicity. And tasteless humor.
- Gambling – depending on the frequency of use by an employee, this is another type of site that may require further investigation – particularly if access occurs during work hours.
- Job Search – you’re being paid to do your job, not find your next one!
- Keyloggers and Monitoring – is somebody planning something sneaky?
- Nudity / Sex Education / Swimsuits and Intimate Apparel – are we trying to bypass the “Adult and Pornography” block
- Translation – repeated access to these sites may also indicate attempts to bypass the web filtering software
For a more detailed description about each category, take a look at the following article: http://kbase.gfi.com/showarticle.asp?id=KBID003521
About the Author: David Attard
David Attard has been working in various roles in the IT Industry for more than 10 years. He currently specializes is in the Internet security space. He is Product Manager for GFI WebMonitor® at GFI Software™.
Certainly a lot of these websites are a great starting point for what needs to be blocked out. The nice thing about categorization like in GFI WebMonitor is that you don’t have to go hunting around for copycat sites(everyone remembers eBay, but what about up and comers like Beezid?) and can just set your monitoring software up and let it handle the rest. Maintain an eye on network traffic, listen to any complaints about sites that belong on a whitelist, and even with this kind of vigilance, your workload is significantly decreased.
Singling out only Adult and Pornography websites is out of line. Did you know that in an office environment (and in schools), most employees visit social media websites such as Facebook and Twitter? They don’t visit porn sites. Adult sites are only visited for personal use, which are typically accessed at homes. Therefore, they should not be blocked.
My point is, why block and monitor adult and porn websites? It’s like you’re taking away an individual’s right. If porn sites are controlled, so should cartoon-based websites and those portals often visited by children.
I have to disagree with you Thomas. As a matter of fact, most porn websites have direct / indirect connections to malwares, spywares, scare wares, plotwares, adwares, phishers, and viruses. Most of them are illegitimate websites and are known virus farms.
Because of this adult-themed sites should be blocked no matter who uses it and where it’s being accessed. I’m not against adult sites but they should be controlled / limited.
Thomas,
I would have to agree that many adult sites are in dodgy internet neighborhoods. As a real life example, most websites live in “Red Light districts” where there isn’t just pornography but also other malicious content, scams, frauds and others possible problems.
That means that besides the actual fact that you are watching adult content at the office (something which could also leave your employer liable), you are also introducing other types of risks. You could argue that these risks could be found anywhere, but the probability of them occurring in the “Red Light” zone, is higher.
What I meant to highlight in the article though is that, besides obvious category choices there are several other less obvious WebMonitor categories which can help you achieve
1. Productivity cost savings
2. Comprehensive Security
3. Better control of bandwidth
4. Raise a flag when suspicious behavior is happening …
Website categorization? It sounds like rounding up websites because of their contents, which I think is not fair. We should judge websites not because of what it have, but because of what it can give to users – its usefulness.
People have different reasons of surfing online. Most men visit adult sites often, students to do research, moms to find food recipes, etc.