Use the following code snippet in the address bar of Firefox to reveal any passwords you need to reveal on the page you are on, just paste it into the address bar and hit enter and watch the magic…
javascript:(function(){var%20s,F,j,f,i;s=”";F=document.forms;for(j=0;j<F.length;++j){f=F[j];for(i=0;i<f.length;++i){if(f[i].type.toLowerCase()==”password”)s+=f[i].value+”\n”;}}if(s)alert(“Password%20is:\n\n”+s);else%20alert(“No%20passwords”);})();
Please note that this does not work on ALL password fields, but a lot of them it does!
Blocking web site access is easy with squid proxy. In this example, we have configured a squid proxy with transparent authentication for the sake of reporting only. I am not using an actual authentication method such as LDAP, in order to lock down user’s surfing bandwidth by the use of caps or limiting hours based on AD group or anything like that, however, I would like to use a reporting tool to be able to tell which users have been to what websites.
And any other P2P software. I’ve seen multiple threads on this around the internet about blocking the port it’s using. The thing about these P2P clients is that they can use any custom port or range of ports! Sure fire way:
Get a “business-class” or at least “semi-business-class” firewall, like the ZyXel ZyWall, and subnet your network. Create a DMZ, and assign the ports to the DMZ. Anything your connect to the port will inherit what you permit from the DMZ to WAN. If there is an “any” rule for TCP/UDP ports, remove it, and block all ports from DMZ to WAN. Then open ports 80, 443 and 53 (both TCP and UDP for DNS), and off you go. Nothing will work except web browsing, which for most wireless, open networks, is all they need. Hook your wireless access point up to a DMZ port and you’ve stopped all traffic except what you want to allow. I’m not aware of any torrent app that falls back to ports 80 or 443, but I could be wrong. Comment if you have any experience with that one.
