Quantcast
Channel: Forcepoint Community
Viewing all 2011 articles
Browse latest View live

Site flagged as POTENTIALLY DAMAGING CONTENT

February 25, 2013, 10:43 am
$
0
0

Hi - We have a site that websense flagged a risk.  Is there a way to narrow down what the specific risk is on the site to tell the webmaster?  We have a user who needs to get to the site so we would like to get it sorted out.

http://www.msbadvisoryboard.com/"

'This WebSense category is filtered: Potentially Damaging Content. Sites in this category may pose a security threat to network resources or private information, and are blocked by your organization.'

Tracelog says:

protocol= "http"
url= "http://www.msbadvisoryboard.com/"
port= "80"
category= 194 (POTENTIALLY DAMAGING CONTENT)
disposition= 1025 (Category Blocked)
app type= ""
keyword= ""

Any help would be great.

Thanks!

Aria

Search

Delete

August 2, 2013, 9:39 am

Upgrade Path beyond 7.3

July 9, 2013, 8:33 am
$
0
0

We are looking at upgrading out Exchange 2003 Server to Exchange 2013. We are currently running Email Security 7.3 and I do not see a clear path to upgrade to the latest version.

I have seen some discussion about moving to an appliance but not sure if this is the only path or if there is a software download that we can run. If the appliance is the only path, then how does our current licensing work out since we have 841 days left?

Thanks

Controlling Web Uploads when user is roaming

August 2, 2013, 10:23 am
$
0
0

Hello Guys,

We´re requesting this on behalf of some costumers that ask this to us.

Scenario: costumer with Data Security Suite and Websense Security Gateway Anywhere.

Business Need: monitor files sent to Webmails and Cloud Storage (and in the future block these transactions when needed)

Rule Created: we did create a rule that perform this.

A Specific set of files types sent to some defined URL Categories (Personal Network Storage and Backup, General Email, Hosted Business Applications) triggers the policy and are audited or blocked when needed.

This rule works when the user is monitored by the local WCG proxy.

And this rule do not works when the user is roaming, and is filtered just by the Endpoint HTTP channel.

 

Feature Request:

allow Endpoint HTTP and HTTPS channel to retrieve URL Categorization, so these kind of rules works not matter user location.

Thanks

Nelio

E-Mail block Page

August 5, 2013, 11:20 am
$
0
0

Had just installed a new setup of WebSense 7.7.3

We were receiving a block page on GMail and Yahoo E-Mail.  The block page contained a "Continue" button for Work Related Useage.  Today that has gone away and I want it back.

Was this due to a new download or what?

Allow Domain based Static Bypass

March 14, 2013, 1:31 pm
$
0
0

Currently to add a static bypass, one would need a source IP or a destination IP.

 

Why can't we just put in a domain based static bypass? This would fix a lot of headache with certain akamai re-IP issues.

Support for filtering users on Citrix XenApp 6.5

March 6, 2013, 4:11 am
$
0
0

We upgraded from Citrix Presentation Manager 4.5 to XenApp 6.5 in the fall and from what I can tell, 7.5, 7.6 nor 7.7 -- none of these Websense Web Security products support integration with XenApp 6.5   only 5 and 6.0  Websense has always supported Citrix integration (for user based policy), and 6.5 has been out for over a year... I'm really disappointed that Websense has not provided support for it, unless I just don't see where /how ?  How are others handling this issue?  I suppose I could continue filtering with a general policy, but when human resources asks me for a report to show web browsing activity for an individual citrix user, I will be left explaining that I cannot provide it ....   Is there an ETA for XenApp 6.5 integration support ?  This is really important and may result in my searchign for another product/solution all together.. which would be a shame.

Delegated Administrator - multiple roles reporting

August 5, 2013, 10:03 pm
$
0
0

Normal 0 false false false EN-AU X-NONE X-NONE MicrosoftInternetExplorer4

We have a number of Delegated administrators who manage multiple Roles via a single AD logon account.  When an administrator who manages multiple"Roles" logs in, they see aggregate report data for all of the Roles under their DA account. This makes it difficult to make an assessment for the individual role that the Administrator is interested in.  We have logged a call with Websense Technical support and been advised that this is how the reporting was designed to function.

We would like to log a Feature request to fix this issue so that the DA is presented with user data only related to the Role they have logged on.

Search

Triton reports incorrect user data volumes

August 5, 2013, 9:58 pm
$
0
0

Normal 0 false false false EN-AU X-NONE X-NONE MicrosoftInternetExplorer4

We are a large education organisation with approx 70000 users and rely on reporting data for capacity planning and understanding user behaviour.  Triton reports incorrect data transfers for users in either the upload or download directions.  Cases have been logged with the Websense Technical support and as a result we are advised that the data reporting behaviour is per design.  User data transfer volume is reported on the packet header counters which does not reflect the actuals. 

 We would like to raise a Feature request to correct this anomaly so that figures are based on actual data transferred.  

Triton Console - Poor Administrator experience

August 5, 2013, 10:09 pm
$
0
0

Normal 0 false false false EN-AU X-NONE X-NONE MicrosoftInternetExplorer4

Our Delegated Administrators are reporting poor experience managing user configurations via the Triton console. Some examples are :

- Landing page load at first login : 20sec
- click "Filters" 16 sec
- "Save and Deploy" 38 sec, there is no "progress indicator" displayed so Admins click the button again which results in"database conflict" error and requesting them to logoff
- Occasional Triton crash with " Internal error" then the console won't be available for a few hours unless the service is restarted on the server.

We expect that most process should not take longer than 2-5 seconds as this is the expected user experience  loading content rich web pages.

This issue has already been logged with Technical Support and there is no immediate fix available.  Therefore we have been directed to Feature Request.


Please log a Feature Request to enhance responsiveness of the console particularly as it affects close to a 100 DAs in our community.

RTM and reports showing nothing

August 5, 2013, 9:11 pm
$
0
0

Hi, 

 

I have recently deployed web security 7.7.3 and it was running smooth until I did a windows update for the server then the RTM and the reporting are showing nothing. 

 

I did all the suggested steps in the KBs I found here and by search engine but still the same when I open the RTM it will show either my username opening websense or nothing at all. 

is there anything I am missing here ? shall I rollback the windows update ? 

it was for .net 4.0 

 

your help is really appreciated because I have to submit my reports at the end of the week. 

is Websense cloud web security gateway a viable solution?

July 18, 2013, 10:20 am
$
0
0

Hello folks - Could someone throw some insight wrt the below websense cloud questions:

If authentication is based on firewall external IP then how does Websense cloud sees individual usernames?

Is the PAC file static?

Is pushing PAC file URL via Group Policy, a one-time job?  Post that, how do I ensure my browser pulls the most current PAC file from Cloud after a policy change?

What happens if I try to browse without the PAC file?

When users are in office or home, could they install a new browser (other than IE & Firefox that supports your PAC files) in order to bypass Websense and try visiting any websites?

Does websense supports NTLM authentication from within the office? The rationale behind this question is when we generate internet usage reports does it show ‘usernames’?

 

If there are multiple policies for each and every department (for eg. HR, IT, Sales, Marketing etc), how does Websense decides which policy applies to which department for requests originating from within the office and remote (roaming).

Hostname and MAC address base access to users

August 7, 2013, 3:26 am
$
0
0

Hi,

 

Can we give users to hostname and mac address base access. Currently it support user id(AD) and IP address.

Secondly when ever we give ip based access we need to maintain excel sheet to keep IP address record to whom we give access. Can you give a option to enter the username with ip address.

 

 

Having an Reporting: Requested "to" date was later than the last available day

January 8, 2010, 8:35 am
$
0
0

Hey there,

I'm running version 7.1 and noticed a problem this morning. When I look up a user and try to view what they've access today, I receive a "Requested "to" date was later than the last available day" error. I can change the date to yesterday and veiw the log. The Log Server Service is running and connecting to a SQL DB on another machine. I have tmp files in the Websense\bin\cache folder that are from today and yesterday. Looking at the SQL DB, there was a WSLog created this morning around 3:00 AM. I rebooted the server just to try to get it going but that was unsuccessful.

Any help would be appreciated.

Thank you.

Allow exceptions for entire categories

August 7, 2013, 3:31 pm
$
0
0

In version 7.7.3, we can create exceptions for a particular web site, and apply those exceptions to an AD group.  Can the exception feature be extended so we can create an exception for a category?  That way we don't have to maintain multiple policies, and the changes can expire if needed.

Search

Site lookup tool - Invalid HTTP response

August 8, 2013, 7:12 am
$
0
0

I use the site lookup tool on this site almost everyday since we block Uncategorized by default (most malware hosts are uncategorized according to our malware reverse-engineer). Lately I have noticed it is either slow or non-responsive. The last week I have been getting "Invalid HTTP response" when submitting a URL or a category suggestion. According to Websense article http://www.websense.com/content/support/library/web/v75/wcg_help/HTML.aspx this is due to a 502 error where the web server does not respond correctly.

 

Anybody else seeing this? Hopefully this may bring it to somebody's attention. :)

Some users not monitored and thus not filtered.

August 8, 2013, 12:34 pm
$
0
0

Hi, 

I'm having a issue with regards to some users not being filtered and some are. I'm able to reach "Invalid Request" page when I try to go to http://<ip address of websense>:15871/cgi-bin/blockpage.cgi?   through users who are not filtered so Filtering Server is listening to the request sent by these users but are still not blocked. These users cannot be seen in "Real-TIme Monitor" as well. 

Any idea why this is happening ? 

 

Thanks for the replies in advance. 

Add new Drive for DB & log file

August 8, 2013, 12:09 pm
$
0
0

HI all,

The D Drive is currently out of space now. We just added 500GB for extra drive. How can we change the Database and log partition location to the new drive. Can we keep all database on the current D Drive and all new database will be created in the drive (F:)

I tried change the path as below, however, i don't see anything changed. Please advise.

websense interface> Setting> Reporting> Log Database> File Path

Log Database:  wslogdb76
Data: e:\Websense Database\
Log: e:\Websense Database\

Websense Express End of Life

August 8, 2013, 4:24 pm
$
0
0

We have Websense Express 1.0 installed on a server for basic web filtering. Is there any information on End of Life for this product?

Thanks

Websense Web Cloud - BUG Endpoint authentication of user

August 9, 2013, 1:54 am
$
0
0

Hi,

I found out, that Endpoint assign a policy by chance if the user does not exist on the portal.

Expample:

ActiveDirectory User Peter exists on the protal and is assigned by group to the policy A.

Peter is logged in on the Windows-PC and everything is working. Endpoint get the correct policy and Peter is browsing over the correct policy A.

Now: on the pc there exists some default windows-services. Some Services try to connect to the internet. The services are runnind under a internal-OS-User like "system" or "Network". The Endpoint get in this way a policy by chance and modify so the PAC-File in the Browser. So if Peter is now brwosing, he browses over the wrong PAC-File and so with a wrong Policy!!!

Only if Peter open and closes the Browser, he will get back the correct Pac-File/Policy, which is assigned to his Windows-User.

Websense should prevent this autoregistrations by chance or prevent that internatl-OS-Users can register itself over the Endpoint.

I think this is a very critical issue! It could be, that users get in this way a policy where nothing is blocked!!

A internal-OS-User looks then in this way on the protal:

nt authority|system.localnt authority.system.local@35719-31068-nosuchdomain.autoregistration.proxynt authority\system.local

 

Bye

Viewing all 2011 articles
Browse latest View live
Search