The following details are centrally logged for websites accessed via web proxies: • web address • date and time • user • amount of data uploaded and downloaded • internal and external IP addresses.
Topic
Web proxy event logging
Applicable to
all
History
Priority
should
Dec 2023
The following details are centrally logged for websites accessed via web proxies:
• web address
• date and time
• user
• amount of data uploaded and downloaded
• internal and external IP addresses.
The existing control relating to the centralised storage of web proxy event logs was merged into the existing control relating to collecting web proxy event logs. [ISM-0261, ISM-1777]
Mar 2022
The following details are logged for websites accessed via web proxies:
• address
• date and time
• user
• amount of data uploaded and downloaded
• internal and external IP addresses.
Miscellaneous changes were made to rationale and recommendations throughout the publication to clarify content without changing intent. This included a review from the Guidelines for System Hardening chapter through to the Guidelines for Data Transfers chapter.
2015
A web proxy should authenticate users and provide logging that includes the following detailsabout websites accessed:• address (uniform resource locator)• time/date• user• amount of data uploaded and downloaded• internal IP address• external IP address.
2010
A web proxy should authenticate system users and provide logging that includes the following detailsabout websites accessed:•••••address (uniform resource locator)time/datesystem userinternal IP addressexternal IP address.
2008
An agency’s Web proxy should authenticate system users and provide logging that includes the following details about websites accessed: a. uniform resource locator b. time/date c. system user d. internal Internet Protocol address e. external Internet Protocol address.