Web-based security and filtering system for inbound/outbound communications with proxy chaining
First Claim
1. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
- a plurality of computer users,one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address,an administrative module/interface that includes configuration settings for inbound communications and for outbound communications, has list maintenance functions,said administrative module located in a user computer for configuring a range of access levels and being capable of creating multiple types of user accounts that require unique authentication credentials for each user account including an administrator account that has the full power to configure,a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound lists being uniquely configurable for each user account, each user computer in the plurality of user computers can be configured to use the first proxy server,said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request,a second proxy server, without the administrative module and without the friendly or the unfriendly lists, placed between the first proxy server and the Internet, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges,the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request,the first proxy server and the second proxy server have a network communication link between them.
2 Assignments
0 Petitions
Accused Products
Abstract
A customizable system for filtering web-based HTTP requests for outbound and inbound access to web sites. An administrative module in a user computer configures a range of access levels for inbound and outbound communications and has list maintenance functions. Users attempting to access an unfriendly site are anonymously forwarded to a friendly site or the request is terminated. A first proxy server in each user computer of a LAN has access to the WWW, has a customizable friendly and unfriendly outbound list, one of which is active and a customizable friendly and unfriendly inbound list, one of which is active. A second HTTP proxy server without an administrative module or friendly or unfriendly lists is between the first proxy server and the Internet as a LAN gateway or at an ISP domain, the second proxy being capable of communicating to a proxy of a destination or directly to a destination.
-
Citations
71 Claims
-
1. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for inbound communications and for outbound communications, has list maintenance functions, said administrative module located in a user computer for configuring a range of access levels and being capable of creating multiple types of user accounts that require unique authentication credentials for each user account including an administrator account that has the full power to configure, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound lists being uniquely configurable for each user account, each user computer in the plurality of user computers can be configured to use the first proxy server, said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request, a second proxy server, without the administrative module and without the friendly or the unfriendly lists, placed between the first proxy server and the Internet, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges, the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request, the first proxy server and the second proxy server have a network communication link between them. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for inbound communications and for outbound communications and has list maintenance functions, said administrative module located in a user computer for configuring a range of access levels and being capable of creating multiple types of user accounts that require unique authentication credentials for each user account including an administrator account that has the full power to configure, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound list being uniquely configurable for by each user account, each user computer in the plurality of user computers can be configured to use the first proxy server, said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request, a second proxy server, without the administrative module and without the friendly or the unfriendly lists, placed between the first proxy server and a resource, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges, the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request, the first proxy server and the second proxy server have a communication link between them. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for inbound communications and for outbound communications and has list maintenance functions, said administrative module located in a user computer for configuring a range of access levels and being capable of creating multiple types of user accounts that require unique authentication credentials for each user account including an administrator account that is self-configuring, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound list being uniquely configurable for each user account, and said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
-
-
42. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for outbound communications and has list maintenance functions, said administrative module located in a user computer for configuring a range of access levels and being capable of creating multiple types of user accounts that require unique authentication credentials for each user account including an administrator account that is self-configuring, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, the friendly outbound list and the unfriendly outbound list being uniquely configurable for each user account, and said first proxy server programmed to receive a request from an HTTP client, check the identity of a requested URL against the friendly outbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request without the knowledge of the user. - View Dependent Claims (43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56)
-
-
57. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for outbound communications and has list maintenance functions, said administrative module located in a user computer for configuring a range of access levels and being capable of creating multiple types of user accounts that require unique authentication credentials for each user account including an administrator account that is self-configuring, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, the friendly outbound list and the unfriendly outbound list being uniquely configurable for each user account, and said first proxy server programmed to receive a request from an HTTP client, check the identity of a requested URL against the friendly outbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request without the knowledge of the user, a second proxy server without the administrative module or the friendly or the unfriendly lists placed between the first proxy server and either (i) the Internet or (ii) a resource, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges, the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request, the first proxy server and the second proxy server have a network communication link between them. - View Dependent Claims (58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71)
-
Specification