04-24-2013 10:03 AM
Our students have decided it is fun to install the nCage Chrome extension which changes all images on a web page to a picture of Nicholas Cage. What is the best way to block a single URL from being accessed -- they are installing it via the Chrome Web Store.
We have a PAN-500.
The url in question is: https://chrome.google.com/webstore/detail/ncage/hnbmfljfohghaepamnfokgggaejlmfol
Thanks for any assistance.
04-24-2013 11:00 AM
You're right, I'm sorry I missed that.
If you are not using SSL Decryption, you can only control the hostname (chrome.google.com). You can certainly block that domain, but it will block everything including downloads of chrome (and probably automatic chrome updates).
SSL Decryption would solve that issue, though it is something that needs to be implemented, rather than a quick toggle or test.
04-24-2013 10:18 AM
You can put just the domain and path into a custom URL category, denying that in your URL Filtering profile:
http://screencast.com/t/jRQ4KfvDkF0I
You can also use a * in place of the long string at the end ("/detail/ncage/*") in case Google changes the string.
Hope this helps!
Greg Wesson
04-24-2013 10:49 AM
That unfortunately did not help. I'm going to guess it's because it is https and not http?
04-24-2013 11:00 AM
You're right, I'm sorry I missed that.
If you are not using SSL Decryption, you can only control the hostname (chrome.google.com). You can certainly block that domain, but it will block everything including downloads of chrome (and probably automatic chrome updates).
SSL Decryption would solve that issue, though it is something that needs to be implemented, rather than a quick toggle or test.
04-25-2013 06:04 PM
In your URL filtering profile setup, just add the URL into the "block" list as per the attached picture?
and commit the configuration?
Don't 100% know if it'll work (running v4.1.11 here, last time I tried this was on v3.1.something), but from memory this doesn't care about http/https
Cheers.
04-26-2013 03:07 AM
Thanks for the suggestion, but since it is an secure site (https), that won't work w/o SSL Decryption turned on, which I'm not willing to do.
I've figured out how to block the extension from being installed on our Chromebooks, will figure it out for the rest of the machines this summer.
04-30-2013 08:31 AM
Do you try to create a address object of type fqdn ?
Regards,
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
