Jump to content

Search Filter / Block Keywords


rlocone
 Share

Recommended Posts

Hello All,

I read the below article and thought... Why not implement a search filter on my network.

http://news.yahoo.com/-police-and-fbi-deny-alleged-search-of-new-york-home-stemming-from-journalist%E2%80%99s-web-searches--200309173.html

Is there a way to put something in place that would block keywords from leaving my network. I know OpenDNS blocks a lot of stuff but not this. Maybe there is something I can put in DD-WRT to accomplish the job. I have kids and sometimes kids don't always use their heads.

Thanks for your time & attention,

Link to comment
Share on other sites

http://www.dd-wrt.com/wiki/index.php/Transparent_web_proxy

If you really want to make your head hurt, there is a way to search for keywords using iptables and just drop those requests. It's been a long time since I've looked into that though.

This was something I was working on a while ago to try and block bittorrent traffic back in June 2010 lol. I was running a tor exide node to have users run torrents through me while I blocked them. Then I got angry letters from my ISP about spam being sent from me, but it was tor users :(. Ah well, was a fun experiment.

http://forums.hak5.org/index.php?/topic/16731-blocking-bittorrent-traffic

echo This is to block known signatures of BitTorrent activity.
echo Written by\: Mr\-Protocol
sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /announce?info_hash=" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /announce?info_hash=" -j DROP
echo Blocking\: \"GET \/announce?info_hash=\"
sleep 1
sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /scrape?info_hash=" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /scrape?info_hash=" -j DROP
echo Blocking\: \"GET \/scrape?info_hash=\"
sleep 1
sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /announce.php?info_hash=" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /announce.php?info_hash=" -j DROP
echo Blocking\: \"GET \/announce.php?info_hash=\"
sleep 1
sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /scrape.php?info_hash=" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /scrape.php?info_hash=" -j DROP
echo Blocking\: \"GET \/scrape.php?info_hash=\"
sleep 1
sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /announce.php?passkey=" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /announce.php?passkey=" -j DROP
echo Blocking\: \"GET \/announce.php?passkey=\"
sleep 1
sudo iptables -t raw -A OUTPUT -m string --algo bm --string "GET /scrape.php?passkey=" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --string "GET /scrape.php?passkey=" -j DROP
echo Blocking\: \"GET \/scrape.php?passkey=\"
sleep 1
sudo iptables -t raw -A OUTPUT -m string --algo bm --hex-string "|13426974546f7272656e742070726f746f636f6c|" -j DROP
sudo iptables -t raw -A PREROUTING -m string --algo bm --hex-string "|13426974546f7272656e742070726f746f636f6c|" -j DROP
echo Blocking\: \"\(0x13\) \+ \"BitTorrent protocol\"
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...