Of course, you still need a spare PC to do this and it may need to be a reasonable one if the traffic to the Internet is heavy. Set up DHCP (either via your router or from the proxy) so that PC's connecting to your network automatically have a "default gateway" pointed at the proxy and possibly filter all DNS requests through it as well. Anyone who tries to bypass the proxy doesn't connect to anything useful. Basically, you set your router or firewall to only forward traffic to the Internet if it goes via your proxy. To do this, you need to run at least one physical or virtual server and there are license costs too.įor your purposes though, a much better option that avoids running up an entire Windows domain would be to create a "transparent proxy". This includes required software & services to be running, files and folders that are protected, limited administration rights and so on. Windows Domain's are able to enforce security policies of many kinds. If you really need protection on one or more computers, you need to make them part of a Windows Domain. With regard to the second part of the question: you can't I'm afraid. A determined person would still be able to delete the file if they really wanted to. But I've no real idea if this is workable. You could try to fool Windows into adding the file into the list used by the Windows File Protection feature. Perhaps someone with better Windows security knowledge knows of a way but as far as I know, a user with Admin rights on a non-Domain (stand alone) computer can do anything they want to if they know what they are doing. I actually can't think of a reliable way to do this as stated I'm afraid.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |