Web-based security and filtering system with proxy chaining
First Claim
1. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
- a plurality of computer users,one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address,an administrative module/interface that includes configuration settings for inbound communications and for outbound communications, has list maintenance functions including list editing, list deleting, searching of lists, saving of lists, proxy chaining routing, adding and deleting users, interchanging lists and importing and exporting lists,said administrative module located in a user computer for configuring a range of access levels and being capable of creating three types of user accounts that require unique authentication credentials for each user account including an administrator account that has the full power to configure, regular accounts with administrative privileges other than the privilege to create additional accounts or view information on any other accounts and regular accounts without administrative privileges,a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound lists being uniquely configurable for each user account, each user computer in the plurality of user computers can be configured to use the first proxy server,said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request,a second proxy server, without the administrative module and without the friendly or the unfriendly lists, placed between the first proxy server and the Internet, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges,the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request,the first proxy server and the second proxy server have a network communication link between them.
2 Assignments
0 Petitions
Accused Products
Abstract
A customizable system for filtering web-based HTTP requests for outbound and inbound access to web sites. An administrative module includes configuration settings for inbound and outbound communications, list maintenance functions and that is located in a user computer for configuring a range of access levels from maximum 100% access to full suspension and having administrator account, regular accounts and an anonymous guest account to be used by all users with no valid system user name and password. If a user attempts to access an unfriendly site the user is anonymously forwarded to a friendly site or the request is terminated. A first proxy server in each user computer of a local area network has access to the world wide web, has a customizable friendly and unfriendly outbound list, one of which is active and a customizable friendly and unfriendly inbound list, one of which is active. A second HTTP proxy server without an administrative module or friendly or unfriendly lists is placed between the first proxy server and the Internet located as a gateway of a Local Area Network system or at an Internet Service Provider domain, the second proxy being capable of communicating to a proxy of a destination or directly to a destination and having an Internet Protocol address known only to the system administrator. The system automatically generates a logfile of all web sites visited by each user. For single users in a home or office the second proxy is provided through the Internet Server Provider.
-
Citations
48 Claims
-
1. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for inbound communications and for outbound communications, has list maintenance functions including list editing, list deleting, searching of lists, saving of lists, proxy chaining routing, adding and deleting users, interchanging lists and importing and exporting lists, said administrative module located in a user computer for configuring a range of access levels and being capable of creating three types of user accounts that require unique authentication credentials for each user account including an administrator account that has the full power to configure, regular accounts with administrative privileges other than the privilege to create additional accounts or view information on any other accounts and regular accounts without administrative privileges, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound lists being uniquely configurable for each user account, each user computer in the plurality of user computers can be configured to use the first proxy server, said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request, a second proxy server, without the administrative module and without the friendly or the unfriendly lists, placed between the first proxy server and the Internet, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges, the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request, the first proxy server and the second proxy server have a network communication link between them. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet and/or for controlling inbound requests from the Internet for access to a web site of the system, comprising:
-
a plurality of computer users, one or a plurality of user computers, each having a dynamically allocated Internet protocol address or a static Internet Protocol address, an administrative module/interface that includes configuration settings for inbound communications and for outbound communications, has list maintenance functions including list editing, list deleting, searching of lists, saving of lists, proxy chaining routing, adding and deleting users, interchanging lists and importing and exporting lists, said administrative module located in a user computer for configuring a range of access levels and being capable of creating three types of user accounts that require unique authentication credentials for each user account including an administrator account that has the full power to configure, regular accounts with administrative privileges other than the privilege to create additional accounts or view information on any other accounts and regular accounts without administrative privileges, a first proxy server in one or a plurality of user computers of a local area network with access to the world wide web, each of said first proxy server having a friendly outbound list and/or an unfriendly outbound list only one of which is active at any given time, and/or having a friendly inbound list and/or an unfriendly inbound list only one of which is active at any given time, the friendly outbound list, the unfriendly outbound list, the friendly inbound list and the unfriendly inbound list being uniquely configurable for each user account, each user computer in the plurality of user computers can be configured to use the first proxy server, said first proxy server programmed to receive a request from an HTTP client, check the identity of a requesting client and/or of a requested URL against the friendly inbound, friendly outbound, unfriendly inbound or unfriendly outbound list maintained by the administrative module and then either approve the request, terminate the request or re-route the request, a second proxy server, without the administrative module and without the friendly or the unfriendly lists, placed between the first proxy server and a resource, the second proxy server being capable of communicating to a proxy of a destination or directly to a destination, said second proxy server having an Internet Protocol address configurable only by a holder of the administrator account or a regular account with administrative privileges, the first proxy server programmed to forward the request to the second proxy server if and when said first proxy server approves the request, the first proxy server and the second proxy server have a communication link between them. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48)
-
Specification