Slashdot Mirror

← Back to Stories (view on slashdot.org)

Blocking MSN Messenger?

Posted by Cliff on from the making-IMs-not-so-instant dept.

Tekno2k3 asks: "As a sysadmin for a financial company, I have been tasked with removing Instant Messaging from our network. The only service that is being difficult is MSN Messenger. It uses many methods to get around being blocked. These include using port 80, using it's own DNS servers for lookup, using MANY logon servers, and using reverse DNS lookup. Has anyone had any success in blocking Messenger?"

20 of 236 comments (clear)

  1. Re:The easy way isn't always popular by Kizzle · · Score: 1, Insightful

    Are you fucking serious? Really. Have you ever had a job before? You can't go around firing people for petty reasons like instant messaging. Before you know it you have people striking and everyone hates you.

    --
    Hacker Media
  2. Why block MSN? by flikx · · Score: 3, Insightful

    The real question here is why block MSN? What about people who use instant messaging for legitimate business purposes?? People chat on telephones, and I don't see many offices rushing to ban them. Fire unproductive people, and let the rest of us communicate.

    --
    One future, two choices. Oppose them or let them destroy us.
    1. Re:Why block MSN? by NanoGator · · Score: 1, Insightful

      "The real question here is why block MSN? What about people who use instant messaging for legitimate business purposes?? People chat on telephones, and I don't see many offices rushing to ban them. Fire unproductive people, and let the rest of us communicate."

      Gotta say, I agree. I've visited a number of large corps and all of them had computers using Im of some sort. Beats the heck out of walking to another building or even making a phone call. (Phones are so annoying.)

      What really bugs me is that if they weren't using MSN, they'd probably be using email. It's futile, really.

      Okay, I'm haven't really added anything new to the parent post. It's just a topic I feel strongly about. The CEO of my company hates chat programs with a passion. (he hates games too, though he has played golf out of town in the middle of a work day...) I remember he was in my office just after I installed ICQ. I wanted to try it out so I could use it for tech support. Neat idea really. I could send files back and forth between people, plus they could easily copy/paste stuff I send them to enter into the app we sold. The real time communication would have been nice since it could take 5 mins or so to get an email to them. Nope, that idea got axed. Within moments of going on line, this voice comes on and says "INCOMING CHAT REQUEST". I was immediately ordered to remove it without explanation. Grr. That idea died a quick death.

      If he didn't have such a nasty attitude about it, I could have been more productive, plus saved money on long distance calls. What really bothers me is that there are PLENTY of managers who have similar opinions about the topic.

      I can't wait until my generation is in charge.

      --
      "Derp de derp."
    2. Re:Why block MSN? by fatrat · · Score: 3, Insightful

      > I can't wait until my generation is in charge.#

      and when you get there, you'll find that all the same regulations about being able to record all conversations/encrypt it etc still apply and so you'd still have to block MSN.

  3. Re:The easy way isn't always popular by bigsteve@dstc · · Score: 4, Insightful
    You can't go around firing people for petty reasons like instant messaging.
    Who are you to say that this would petty? I can think of any number of reasons why instant messaging might be deemed highly inappropriate in a particular workplace. If that is the case, AND management has made this clear to all employees, then somebody who willfully flouts the rules deserves to be sacked.
  4. Re:Try this. by mcdrewski42 · · Score: 2, Insightful

    Why not map that name to a dud address too?

    I assume you ownzor the DNS that client PCs will use!

    --
    /* affect != effect */ void affect(int *thing,int effect) { *thing += effect; }
  5. SEC rules by whoda · · Score: 2, Insightful

    Blame Enron and other such fiasco's.
    Financial institution's have to record and hold all elctronic communications for years now. The specific number of years eludes me atm.

    If you think some E-mails people send are incriminating, imagine what IM's traded around an office would expose.

    It's much easier to stop the people from using IM services than to try to capture/record/log/preserve it all. At least for financial institutions which theoretically could face billion dollar lawsuits.

  6. Re:The easy way isn't always popular by Tuxinatorium · · Score: 2, Insightful

    I call BS. Instant messaging is a useful tool that has many legitimate applications in the workplace, and in any case should be acceptable to use during breaks just like a cell phone, etc. Banning IM programs just means they don't trust the employees, and it's analogous to a high school where students aren't allowed to leave the building during lunch break. That's petty.

    --
    Repeal the DMCA!
  7. How to stop MSN Messenger? You kidding? by Feztaa · · Score: 3, Insightful

    Install Linux, MSN Messenger will go away rather quickly :)

    I think it would be easier to lock down a linux box to prevent installations of gaim, Gabber, etc than it would be to putz around with your firewalls trying to kill MSN Messenger.

    1. Re:How to stop MSN Messenger? You kidding? by spongman · · Score: 2, Insightful

      yeah, and while you're waiting for the install to complete you can port that $2M suite of custom/in-house trading software you just finished paying for.

  8. If you allow www by gl4ss · · Score: 2, Insightful

    If you allow www, you can't stop all chats. You can pretend, but you can't do it. Heck, email can be used for such as well. How about making internet access a priviledge that only those have that need. Though im can be used to boost productivity too.

    --
    world was created 5 seconds before this post as it is.
  9. Higher Management? by vasqzr · · Score: 2, Insightful


    I did this with my old company. They had a very strict firewall policy, and to get a port open, you had to get through higer management.

    Geez. Try baking the sysadmin some cookies, give him a case of Guiness/Bawlz, or take the poor guy to lunch.

  10. Re:The easy way isn't always popular by bigsteve@dstc · · Score: 2, Insightful
    Yes. Some employers don't trust their employees. And in some cases, the distrust is entirely justified. (In the same way, some high-school students are not worthy of trust. BTW, when I went to high school, we weren't allowed to leave the school grounds at lunch time. Those of us who had at least half a brain were capable of understanding why ... and it was nothing to do with pettiness.)

    Banning instant messaging might be counter productive if the aim is to increase the amount of work done. (It is bad for staff morale.) However, it is management's responsibility to manage productivity. If the workplace culture (or the nature of the work) is such that people find excuses to "bunk off" all of the time, then banning instant messaging as a time waster may be necessary. Besides, there are other (much stronger) reasons why instant messaging might be banned. For example:

    • A workplace requirement for communication monitoring; e.g. finance, defence, etc.
    • A need to protect infrastructure; e.g. against viruses.
    • A need to conserve bandwidth, or control network usage charges.
  11. Re:The easy way isn't always popular by Tekno2k3 · · Score: 2, Insightful

    The real point is that SEC says we HAVE to block it or log it via a server (not the logging that users initiate) or we get shut down.

  12. Re:Group policies are the solution by Directrix1 · · Score: 2, Insightful

    Instead of going the technical approach, have you ever considered proposing the idea of docking pay, and/or firing? Most people need their jobs more than they need instant messaging. Also, why are you letting your users install programs on the company's computers? Do you have everyone run as admin?

    --
    Occam's razor is the blind faith in the natural selection of least resistance and in universal oversimplification. -- EF
  13. Re:Shoot the Messenger by Anonymous Coward · · Score: 1, Insightful

    Shoot Steve Gibson. That guy is an idiot.

  14. Re:Group policies are the solution by MrResistor · · Score: 4, Insightful

    Yes, there are others, but do we really think that the Average Joe IM-Abuser-At-Work will know of these programs?

    Yes, within a week of whatever he was using being blocked. It only takes one person to figure it out, and word will spread.

    --
    Under capitalism man exploits man. Under communism it's the other way around.
  15. Re:Group policies are not the solution by 0x0d0a · · Score: 2, Insightful

    I like sysadmins that run Windows shops and think that since they are the only ones that know what they set the Administrator password to, their machines can't be modified. They're funny.

    Anyone who thinks I'm going to work on Windows without cygwin, JSPager, xemacs, etc, has another think coming. Sysadmins are *support* personnel. They're there to facilitate work getting done. They aren't supervisors of said personnel, and controlling behavior is certainly not in their baliwick unless expressly handed down by management.

    That said, I've had grand old times with IT folks who don't feel the need to try to be assholes.

    Finally, I don't use any form of instant messaging at work, because I find email and phone to be more convenient. But I *have* done software development before with another person on the other end of an ICQ connection, and if that's the most convenient way to do work, IT should definitely not be trying to be a pain in the ass about it.

    --
    May we never see th
  16. Re:Group policies are not the solution by metacosm · · Score: 4, Insightful

    Ding Ding Ding! Correct, IT is there to HELP. Same exact thing goes with contractors, they are there to help the full time employees. As a contractor in IT departments, I can tell you that companies, contractors and IT departments are often very broken in how they try to get stuff done.

    NOT EVERYTHING IS A TECHNICAL ISSUE. Policy is as important as technology. Lazy management makes management problems (lack of control and accountability) into technical problems because they are too weak to deal with the issues on their own and want IT to do it for them.

    Also, FlashDesktops is far better than JSPager :).

  17. Re:An alternative approach by pla · · Score: 2, Insightful

    something like "Hello xxxx, here are your last few messenger messages:

    Something like that would make me very happy - Because I would have instant feedback about whether or not my attempts to circumvent stupid network usage policies had succeeded, and if so, did they work anonymously.

    Mind you, I don't care about vising playboy.com from work - I never understood the point of porn at work anyway, since every work environment I've ever encountered made killing kittens all but impossible while there. But corporate IT departments have a bad habit of blocking valid, work-related traffic that they don't see the need for. "We notice you've visited alphaworks.ibm.com over fifty times in the last two weeks, so we've decided to block it to boost your productivity and ''help'' you not waste company resources.".

    Incidentally, I see the parent article's theme as very similar - Too many people use IM, so block it. This ignores the fact that many people using it may well have a valid, work-related reason for doing so. Personally I've used IM exactly three times (from home, not work, though), and each of those times I used it for the sole purpose of chatting with a fellow coder about something that, in another context, would count as work related (yeah, call me a geek, I actually code for fun).