Web-based security and filtering system for inbound/outbound communications with proxy chaining
First Claim
1. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests from the Internet for access to web resources protected by the system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, the system having at least one user account, said system comprising:
- one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address;
the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising;
an administrative module,wherein said administrative module includes configuration settings for inbound or outbound communications,wherein said administrative module is located in one of the one or more user computers,wherein said administrative module configures one or more different access levels, andwherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials;
a first proxy server in at least one of the said one or more user computers;
wherein the first proxy server has access to the world wide web,wherein said first proxy server is configured by the administrative module,wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account,wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account,wherein said first proxy server is programmed to;
receive a request from said requesting client,check one or more identity attributes of said requesting client against one or more of the friendly inbound list and the unfriendly inbound list of a particular user account;
check the text of a requested URL (uniform resource locator) against one or more of the friendly outbound list and the unfriendly outbound list of the particular user account; and
either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client;
wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser;
a second proxy server in at least one of the one or more computers;
wherein said second proxy server is placed between said first proxy server and either a resource or the Internet;
wherein said second proxy server does not comprise said administrative module, said friendly inbound list of the particular user account, said friendly outbound list of the particular user account, said unfriendly inbound list of the particular user account, or said unfriendly outbound list of the particular user account;
wherein said second proxy server communicates either with a proxy of a destination or directly to said destination;
wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges;
wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request;
wherein said first proxy server and said second proxy server are in communication with one another through a network communication link.
2 Assignments
0 Petitions
Accused Products
Abstract
A customizable system for filtering web-based HTTP requests for outbound and inbound access to web sites. An administrative module in a user computer configures a range of access levels for inbound and outbound communications and has list maintenance functions. Users attempting to access an unfriendly site are anonymously forwarded to a friendly site or the request is terminated. A first proxy server in each user computer of a LAN has access to the WWW, has a customizable friendly and unfriendly outbound list, one of which is active and a customizable friendly and unfriendly inbound list, one of which is active. A second HTTP proxy server without an administrative module or friendly or unfriendly lists is between the first proxy server and the Internet as a LAN gateway or at an ISP domain, the second proxy being capable of communicating to a proxy of a destination or directly to a destination.
49 Citations
99 Claims
-
1. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests from the Internet for access to web resources protected by the system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, the system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module, wherein said administrative module includes configuration settings for inbound or outbound communications, wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web, wherein said first proxy server is configured by the administrative module, wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account, wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account, wherein said first proxy server is programmed to; receive a request from said requesting client, check one or more identity attributes of said requesting client against one or more of the friendly inbound list and the unfriendly inbound list of a particular user account; check the text of a requested URL (uniform resource locator) against one or more of the friendly outbound list and the unfriendly outbound list of the particular user account; and either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser; a second proxy server in at least one of the one or more computers; wherein said second proxy server is placed between said first proxy server and either a resource or the Internet; wherein said second proxy server does not comprise said administrative module, said friendly inbound list of the particular user account, said friendly outbound list of the particular user account, said unfriendly inbound list of the particular user account, or said unfriendly outbound list of the particular user account; wherein said second proxy server communicates either with a proxy of a destination or directly to said destination; wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges; wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request; wherein said first proxy server and said second proxy server are in communication with one another through a network communication link. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests from the providing for access to web resources protected by said system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, said system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account; wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account, wherein said first proxy server is programmed to; receive a request from said requesting client, check one or more identity attributes of said requesting client against one or more of the friendly inbound list of a particular user account and the unfriendly inbound list of the particular user account; check the text of a requested URL against one or more of the friendly outbound list of the particular user account and the unfriendly outbound list of the particular user account; and either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) client application or a web browser. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for filtering both outbound requests and inbound requests from the providing for access to web resources protected by said system, said system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account; wherein when said first proxy server comprises both a friendly outbound list and an unfriendly outbound list of a particular user account, only one of said friendly outbound list and said unfriendly outbound list of the particular user account is active in said first proxy server at any given time; wherein said first proxy server is programmed to; receive a request from said requesting client, check the text of a requested URL against one or more of the friendly outbound list of the particular user account and the unfriendly outbound list of the particular user account; and either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) client application or a web browser. - View Dependent Claims (44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60)
-
-
61. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for filtering both inbound requests for access to web resources protected by said system and for outbound requests, said system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account; wherein when said first proxy server comprises both a friendly outbound list and an unfriendly outbound list of a particular user account, only one of said friendly outbound list and said unfriendly outbound list of the particular user account is active in said first proxy server at any given time; wherein said first proxy server is programmed to; receive a request from said requesting client, check said text of a requested URL (uniform resource locator) against one or more of the friendly outbound list of the particular user account and the unfriendly outbound list of the particular user account; either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) client application or a web browser; a second proxy server in at least one of the one or more computers; wherein said second proxy server is placed between said first proxy server and either a resource or the Internet; wherein said second proxy server does not comprise said administrative module, said friendly outbound list of the particular user account, or said unfriendly outbound list of the particular user account; wherein said second proxy server communicates either with a proxy of a destination or directly to said destination; wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges; wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request; wherein said first proxy server and said second proxy server are in communication with one another through a network communication link. - View Dependent Claims (62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82)
-
-
83. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests for access to web resources protected by said system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, said system having at least one user account, the system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account; wherein said first proxy server is programmed to; receive a request from said requesting client, check said identity attributes of said requesting client against one or more of the friendly inbound list of a particular user account and the unfriendly inbound list of the particular user account; either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser. - View Dependent Claims (84, 85, 86, 87, 88, 89)
-
-
90. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests for access to web resources protected by said system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, said system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account; wherein said first proxy server is programmed to; receive a request from said requesting client, check said identity attributes of said requesting client against one or more of the friendly inbound list of a particular user account and the unfriendly inbound list of the particular user account; either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser; a second proxy server in at least one of the one or more computers; wherein said second proxy server is placed between said first proxy server and either a resource or the Internet; wherein said second proxy server does not comprise said administrative module, said friendly inbound list of the particular user account, or said unfriendly inbound list of the particular user account; wherein said second proxy server communicates either with a proxy of a destination or directly to said destination; wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges; wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request; wherein said first proxy server and said second proxy server are in communication with one another through a network communication link. - View Dependent Claims (91, 92, 93, 94)
-
-
95. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests for access to web resources protected by said system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, said system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said multiple types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account; wherein when said first proxy server comprises both a friendly inbound list and an unfriendly inbound list of a particular user account, only one of said friendly inbound list and said unfriendly inbound list of the particular user account is active in said first proxy server at any given time; wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account; wherein when said first proxy server comprises both a friendly outbound list and an unfriendly outbound list of the particular user account, only one of said friendly outbound list and said unfriendly outbound list of the particular user account is active in said first proxy server at any given time; wherein either (i) said one of the said friendly inbound list and said unfriendly inbound list in said first proxy server is uniquely configurable for each user account or (ii) said one of the said friendly outbound list and said unfriendly outbound list in said first proxy server is uniquely configurable for each user account; wherein said first proxy server is programmed to; receive a request from said requesting client, check one or more identity attributes of said requesting client against one or more of the friendly inbound list of a particular user account and the unfriendly inbound list of the particular user account; check said text of said requesting URL against one or more of the friendly outbound list of the particular user account and the unfriendly outbound list of the particular user account; either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser.
-
-
96. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests for access to web resources protected by said system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, said system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module; wherein said administrative module includes configuration settings for inbound or outbound communications; wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server is part of a local area network with access to the world wide web; wherein said first proxy server is configured by the administrative module; wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account; wherein when said first proxy server comprises both a friendly inbound list and an unfriendly inbound list of a particular user account, only one of said friendly inbound list and said unfriendly inbound list of the particular user account is active in said first proxy server at any given time; wherein said one of said friendly inbound list and said unfriendly inbound list in said first proxy server is uniquely configurable for each user account; wherein said first proxy server is programmed to; receive a request from said requesting client, check one or more identity attributes of said requesting client against one or more of the friendly inbound list of the particular user account and the unfriendly inbound list of the particular user account; either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser.
-
-
97. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests from the Internet for access to web resources protected by the system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, the system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module, wherein said administrative module includes configuration settings for inbound or outbound communications, wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said multiple types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web, wherein said first proxy server is configured by the administrative module, wherein said first proxy server further comprises at least one of a friendly inbound list and an unfriendly inbound list per user account, wherein said first proxy server is programmed to; receive a request from said requesting client, check one or more identity attributes of said requesting client against one or more of the friendly inbound list of a particular user account and the unfriendly inbound list of the particular user account; and either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HHTP application or a web browser; a second proxy server in at least one of the one or more computers; wherein said second proxy server is placed between said first proxy server and either a resource or the Internet; wherein said second proxy server does not comprise said administrative module, said friendly inbound list of the particular user account, or (ii) said unfriendly inbound list of the particular user account; wherein said second proxy server communicates either with a proxy of a destination or directly to said destination; wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges; wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request; wherein said first proxy server and said second proxy server are in communication with one another through a network communication link.
-
-
98. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests from the Internet for access to web resources protected by the system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, the system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module, wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures one or more different access levels, and wherein said administrative module is configured to create one or more different types of user accounts, wherein each of the said one or more different types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web, wherein said first proxy server is configured by the administrative module, wherein said first proxy server is programmed to; receive a request from said requesting client, and either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP application or a web browser; second proxy server in at least one of the one or more computers; wherein said second proxy server is placed between said first proxy server and either a resource or the Internet; wherein said second proxy server does not comprise said administrative module, wherein said second proxy server communicates either with a proxy of a destination or directly to said destination; wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges; wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request; wherein said first proxy server and said second proxy server are in communication with one another through a network communication link.
-
-
99. A versatile customizable combination system for providing filtering of outbound requests for access to web sites on the Internet or for controlling inbound requests from the Internet for access to web resources protected by the system, or for filtering both outbound requests for access to web sites on the Internet and controlling inbound requests from the Internet for access to web resources protected by said system, the system having at least one user account, said system comprising:
-
one or more user computers, wherein each of the said one or more user computers comprises either a dynamically allocated Internet protocol address or a static Internet protocol address; the one or more user computers comprising one or more hardware processors and comprising memory, wherein the memory stores executable instructions, the executable instructions comprising; an administrative module, wherein said administrative module includes configuration settings for inbound or outbound communications, wherein said administrative module is located in one of the one or more user computers, wherein said administrative module configures a range of access levels, and wherein said administrative module is configured to create multiple types of user accounts, wherein each of the said multiple types of user accounts requires one or more unique authentication credentials; a first proxy server in at least one of the said one or more user computers; wherein the first proxy server has access to the world wide web, wherein said first proxy server is configured by the administrative module, wherein said first proxy server further comprises at least one of a friendly outbound list and an unfriendly outbound list per user account, wherein said first proxy server is programmed to; receive a request from said requesting client, check the text of a requested URL (uniform resource locator) against one or more of the friendly outbound list of a particular user account and the unfriendly outbound list of the particular user account; and either approve said request from said requesting client, terminate said request from said requesting client, or re-route said request from said requesting client; wherein said requesting client is either an HTTP (Hypertext Transfer Protocol) application or a web browser; a second proxy server in at least one of the one or more computers; wherein said second proxy server is placed between said first proxy server and either a resource or the Internet; wherein said second proxy server does not comprise said administrative module, said friendly outbound list of the particular user account, or said unfriendly outbound list of the particular user account; wherein said second proxy server communicates either with a proxy of a destination or directly to said destination; wherein said second proxy server further comprises an Internet Protocol address used for proxy forwarding, wherein said Internet Protocol address used for proxy forwarding is set during configuration of said first proxy server, wherein said Internet Protocol address used for proxy forwarding is configurable by either an administrative account or a type of user account with administrative privileges; wherein said first proxy server forwards said request to said second proxy server if said first proxy server approves said request; wherein said first proxy server and said second proxy server are in communication with one another through a network communication link.
-
Specification