URL filtering helps companies control which web content their employees can access. URL filtering is a key web security measure that helps protect users and sensitive data by preventing ransomware, phishing websites, and other malware.
In addition, URL filtering can prevent productivity and bandwidth loss caused by users visiting non-work-related websites and drastically reduce organization’s exposure and liability towards pirated software and content.
What is a URL?
URLs, also known as Uniform Resource Locator, is an address used by browsers to retrieve websites, databases, web applications, and protocols.
What is the difference between URL Filtering. DNS Filtering, and Web Filtering?
Web filtering is the broader umbrella category under which URL filtering and DNS filtering fall under. DNS filtering or Domain Name System filtering is the process of blocking whole websites while URL filtering is the name for the process of blocking specific webpages.
How does URL Filtering Work?
To enforce URL filtering, you must create rules defining which URLs must be blocked. These rules are then associated with specific devices and users before they can be enforced. When a user tries to access a webpage, the policies are checked. If allowed, the user will be able to visit the webpage. If not, then a message clarifying the URL restriction will be displayed.
What are the Common Shortcomings of URL Filtering?
Improper policy enforcement in URL filtering can cause over filtering of webpages. For example, if you want your employees to not access social media sites and block them for all users, your social media marketing team will also be affected. While not an inherent fault of URL filtering, it can lead to unintended productivity loss.
URL Filtering is not a complete web security measure. Attackers can spin up websites faster than you can add them to blocklists. To effectively prevent users from downloading malware, fall prey to phishing attempts; you must follow the principle of least privilege.
How does URL Blocklisting Work in Securden Endpoint Privilege Manager?
Securden Endpoint Privilege Manager has a built-in URL filtering functionality that helps your control and restrict user activity on their browsers. You can create rules and policies that prevent specific users from visiting specific websites.
To create a URL blocklist, you must have the regex expressions for the URLs you want to block. You can block entire websites or specific webpages by providing the corresponding regex pattern.
For example, see the following examples
Regex for blocking an exact URL
Use an exact-match regex pattern.
Example: To block https://www.example.com/login
use: ^https:\/\/www\.example\.com\/login$
Regex for blocking URLs containing a specific string (entire websites or parts of website)
Use a partial-match pattern to block all URLs containing a given path or keyword.
Example: To block https://www.example.com/product/
use: example\.com\/product\/
After specifying the required regex patterns for URLs, you want to restrict using the policy, you must associate the policy with devices and users who will be affected by this policy. Once associated, you can save the policy, and it will be automatically enforced.
You can add as many policies as needed. A companywide policy for blocking known malicious sites along with a team-specific policy is a solid place to start.
Frequently Asked Questions
on URL Filtering
Are the URLs blocked across all browsers at the endpoint?
Yes, when a URL blocklist is added, the effect takes place across all browser sessions. The user will not be able to connect to a website with the specified URL structure through any means.
Will users not be able to access genuine webpages?
URL blocklisting in Securden will work based on regex pattern matching. Granularity is as good as the regex expression. If you provide an accurate regex pattern, then only the intended sites will be blocked. The user will be able to visit every other webpage outside the blocklist.
Is URL filtering enough to ensure ransomware and malware security?
No, URL filtering itself is not a holistic enspoint security measure. You must use it in conjunction with the least privilege to ensure that users are not able to install ransomware and malware with admin rights. Without admin rights, malware and ransomware can do very little to cause harm to the organization. Enforcing the principle of least privilege using an Endpoint Privilege Manager is the recommended way to ensure protection against malware and ransomware.
Watch Securden EPM in action.
Book a demo and watch how Securden helps manage admin rights on Mac endpoints.
Book a Demo
X
What's next?
Request a Demo
Get a Price Quote