企業向けWEBアクセスブロックリスト作った

シンジです。社員がASPやクラウドサービスに勝手に個人情報や情報資産をアップロードしていたらいろいろと面倒なので、申請形式にしようと思ったのですが、それも面倒な気がしたので、片っ端から禁止にしてみました。アクセスをしたい人が申請する形式です。某大手IT会社がやっていたのでそのやり方を拝借しました。

Webアクセス制御はお好きなやり方でどうぞ

いろんなレイヤーで実装可能ですが、そもそもそんな制御を出来る環境が無いよという方には、

トレンドマイクロ ウイルスバスター™ ビジネスセキュリティサービス

が、オススメです。こちら、ウィルス対策ソフトウェアですが、

  • サーバー建てずに一極集中管理出来る(クラウドサービス)
  • Webアクセス制御はもちろん、Webレピュテーションも出来る
  • なんならUSBメモリ抜き差し制御も出来る
  • 多機能なのに軽い
  • 中小企業はもちろん、大企業でもカバー出来るレポート能力
  • 値段が安い

とまぁ持ち上げたところで、シンジは別の方法で実装してるんですが、この製品で実装しても良い感じでした(クラウドサービスなのに反映が超速いです)(個人の感想です)

一覧作りましたが歯抜けだと思います

サブドメイン系もあると思うので、ワイルドカードを使っています。このサービスもリストに入れた方がいいのでは?というのを見つけたら、是非教えてください。

(AWSすら禁止するので要注意)

http://*.15five.com/*
http://*.280daily.com/*
http://*.42goals.com/*
http://*.adzerk.com/*
http://*.appstark.com/*
http://*.apsalar.com/*
http://*.aws.amazon.com/*
http://*.basecamphq.com/*
http://*.bimeanalytics.com/*
http://*.bitnami.org/*
http://*.blitz.io/*
http://*.blog.ipoots.com/*
http://*.bonsai.io/*
http://*.chargify.com/*
http://*.chart.io/*
http://*.chartbeat.com/*
http://*.choiceresponse.com/*
http://*.cloud.aculab.com/*
http://*.cloudbees.com/*
http://*.cloudinary.com/*
http://*.cloudleverage.com/*
http://*.cloudvertical.com/*
http://*.copperegg.com/*
http://*.customer.io/*
http://*.database.com/*
http://*.djeese.com/*
http://*.docraptor.com/*
http://*.dreamhost.com/*
http://*.durabledns.com/*
http://*.dydra.com/*
http://*.dyn.com/*
http://*.easel.io/*
http://*.elastic.io/*
http://*.embed.ly/*
http://*.enstratus.com/*
http://*.face.com/*
http://*.feeds.feedburner.com/*
http://*.flying-sphinx.com/*
http://*.formzapper.com/*
http://*.freedomcp.com/*
http://*.gemfury.com/*
http://*.getclicky.com/*
http://*.getpropeller.com/*
http://*.getseconds.com/*
http://*.goscale.com/*
http://*.impact.brighterplanet.com/*
http://*.instance.com/*
http://*.letsfreckle.com/*
http://*.loadimpact.com/*
http://*.mandrill.com/*
http://*.mapbox.com/*
http://*.mediatemple.net/*
http://*.mongohq.com/*
http://*.moonshado.com/*
http://*.myemma.com/*
http://*.nodejitsu.com/*
http://*.openshift.redhat.com/*
http://*.osmek.com/*
http://*.pangoscrum.com/*
http://*.portal.monitis.com/*
http://*.positionly.com/*
http://*.postageapp.com/*
http://*.postmarkapp.com/*
http://*.privio.net/*
http://*.pusher.com/*
http://*.questionpro.com/*
http://*.recurly.com/*
http://*.redistogo.com/*
http://*.regsapp.com/*
http://*.rekognition.com/*
http://*.resource.onlinetech.com/*
http://*.reverbapp.com/*
http://*.saaspose.com/*
http://*.scrumitup.com/*
http://*.scrumy.com/*
http://*.sendgrid.com/*
http://*.sendible.com/*
http://*.skurun.com/*
http://*.sourcerepo.com/*
http://*.spanning.com/*
http://*.spreedly.com/*
http://*.stackable.com/*
http://*.stackmob.com/*
http://*.storageroomapp.com/*
http://*.streamapi.com/*
http://*.sucuri.net/*
http://*.superfeedr.com/*
http://*.swiftstack.com/*
http://*.swiftype.com/*
http://*.tell.ly/*
http://*.tempo-db.com/*
http://*.thundertask.com/*
http://*.totaluptimetech.com/*
http://*.transloadit.com/*
http://*.traxmo.com/*
http://*.urbanairship.com/*
http://*.url2png.com/*
http://*.vexxhost.com/*
http://*.vox.io/*
http://*.vps.net/*
http://*.whizreal.com/*
http://*.workablehr.com/*
http://*.xeround.com/*
http://*.zonomi.com/*
http://15five.com/*
http://280daily.com/*
http://42goals.com/*
http://adzerk.com/*
http://appstark.com/*
http://apsalar.com/*
http://aws.amazon.com/*
http://basecamphq.com/*
http://bimeanalytics.com/*
http://bitnami.org/*
http://blitz.io/*
http://blog.ipoots.com/*
http://bonsai.io/*home
http://chargify.com/*
http://chart.io/*
http://chartbeat.com/*
http://choiceresponse.com/*
http://cloud.aculab.com/*
http://cloudbees.com/*
http://cloudinary.com/*
http://cloudleverage.com/*
http://cloudvertical.com/*
http://copperegg.com/*
http://customer.io/*
http://database.com/*
http://djeese.com/*
http://docraptor.com/*
http://dreamhost.com/*cloud/dreamobjects/
http://durabledns.com/*
http://dydra.com/*
http://dyn.com/*
http://easel.io/*
http://elastic.io/*
http://embed.ly/*
http://enstratus.com/*
http://face.com/*
http://feeds.feedburner.com/*
http://flying-sphinx.com/*
http://formzapper.com/*
http://freedomcp.com/*
http://gemfury.com/*
http://getclicky.com/*
http://getpropeller.com/*
http://getseconds.com/*
http://goscale.com/*
http://impact.brighterplanet.com/*
http://instance.com/*
http://letsfreckle.com/*
http://loadimpact.com/*
http://mandrill.com/*
http://mapbox.com/*
http://mediatemple.net/*
http://mongohq.com/*
http://moonshado.com/*
http://myemma.com/*
http://nodejitsu.com/*
http://openshift.redhat.com/*
http://osmek.com/*
http://pangoscrum.com/*
http://portal.monitis.com/*
http://positionly.com/*
http://postageapp.com/*
http://postmarkapp.com/*
http://privio.net/*
http://pusher.com/*
http://questionpro.com/*
http://recurly.com/*
http://redistogo.com/*
http://regsapp.com/*
http://rekognition.com/*
http://resource.onlinetech.com/*
http://reverbapp.com/*
http://saaspose.com/*
http://scrumitup.com/*
http://scrumy.com/*
http://sendgrid.com/*
http://sendible.com/*
http://skurun.com/*
http://sourcerepo.com/*
http://spanning.com/*
http://spreedly.com/*
http://stackable.com/*
http://stackmob.com/*
http://storageroomapp.com/*
http://streamapi.com/*
http://sucuri.net/*
http://superfeedr.com/*
http://swiftstack.com/*
http://swiftype.com/*
http://tell.ly/*
http://tempo-db.com/*
http://thundertask.com/*
http://totaluptimetech.com/*
http://transloadit.com/*
http://traxmo.com/*
http://urbanairship.com/*
http://url2png.com/*
http://vexxhost.com/*
http://vox.io/*
http://vps.net/*
http://whizreal.com/*
http://workablehr.com/*
http://www.23video.com/*
http://www.42tasks.com/*
http://www.actionmethod.com/*
http://www.activecampaign.com/*
http://www.adclarity.com/*
http://www.ankoder.com/*
http://www.apo.io/*
http://www.appfog.com/*
http://www.appizon.com/*
http://www.applicationcraft.com/*
http://www.appsoncloud.com/*
http://www.atomia.com/*
http://www.availabilitycalendar.com/*
http://www.aviary.com/*
http://www.backupmachine.com/*
http://www.bidsketch.com/*
http://www.bigcartel.com/*
http://www.bitcasa.com/*
http://www.bitsybox.com/*
http://www.blitline.com/*
http://www.box.com/*
http://www.braintreepayments.com/*
http://www.browsera.com/*
http://www.buysellads.com/*
http://www.cachefly.com/*
http://www.cari.net/*
http://www.Cassandra.io/*
http://www.catchmail.co.nz/*
http://www.chatwork.com/*
http://www.claco.com/*
http://www.cleardb.com/*
http://www.clever-cloud.com/*
http://www.clockworksms.com/*
http://www.cloud-canvas.com/*
http://www.cloudamqp.com/*
http://www.cloudcentral.com/*
http://www.cloudflare.com/*
http://www.cloudfoundry.com/*
http://www.cloudmailin.com/*
http://www.cloudpassage.com/*
http://www.co-meeting.com/*
http://www.collaboratecloud.com/*
http://www.crazyegg.com/*
http://www.curalate.com/*
http://www.datadoghq.com/*
http://www.decisiondesk.com/*
http://www.djangozoom.com/*
http://www.dns.com/*
http://www.dnsimple.com/*
http://www.dnsly.net/*
http://www.dnsmadeeasy.com/*
http://www.dnspod.com/*
http://www.dnsstuff.com/*
http://www.dome9.com/*
http://www.dotcloud.com/*
http://www.dropifi.com/*
http://www.eapps.com/*
http://www.elastichosts.com/*
http://www.encoding.com/*
http://www.engineyard.com/*
http://www.eventsourcehq.com/*
http://www.exceptional.io/*
http://www.exceptionhub.com/*
http://www.fastly.com/*
http://www.fippex.com/*
http://www.firehost.com/*
http://www.fliptop.com/*
http://www.framey.com/*
http://www.freeagent.com/*
http://www.freee.co.jp/*
http://www.getballpark.com/*
http://www.giosg.com/*
http://www.giscloud.com/*
http://www.github.com/*
http://www.gogrid.com/*
http://www.gomi.com/*
http://www.greenerbilling.com/*
http://www.hasoffers.com/*
http://www.helpdeskpilot.com/*
http://www.heroku.com/*
http://www.heywatch.com/*
http://www.houndsleuth.com/*
http://www.igloohq.com/*
http://www.instahero.com/*
http://www.internap.com/*
http://www.ipoots.com/*
http://www.iriscouch.com/*
http://www.iron.io/*
http://www.jetstrap.com/*
http://www.joyent.com/*
http://www.justonedb.com/*
http://www.koemei.com/*
http://www.kout.me/
http://www.kualo.com/*
http://www.labguru.com/*
http://www.limelight.com/*
http://www.linode.com/*
http://www.loggly.com/*
http://www.mailchimp.com/*
http://www.mailerlite.com/*
http://www.mailgun.com/*
http://www.maxcdn.com/*
http://www.memcachier.com/*
http://www.mezeo.com/*
http://www.mockflow.com/*
http://www.mockvault.com/*
http://www.net/*
http://www.newrelic.com/*
http://www.nirvanix.com/*
http://www.noca.com/*
http://www.nodeable.com/*
http://www.nuagehq.com/*
http://www.nucloud.com/*
http://www.oneappcloud.com/*
http://www.onehub.com/*
http://www.oovoo.com/*
http://www.openera.com/*
http://www.opscode.com/*
http://www.opsource.net/*
http://www.pagelime.com/*
http://www.pandastream.com/*
http://www.paydragon.com/*
http://www.paymentwall.com/*
http://www.payperlive.com/*
http://www.phaxio.com/*
http://www.picloud.com/*
http://www.pipewise.com/*
http://www.pitchburner.com/*
http://www.pixelapse.com/*
http://www.plivo.com/*
http://www.pogoplug.com/*
http://www.porticor.com/*
http://www.precog.com/*
http://www.procurely.com/*
http://www.pubnub.com/*
http://www.qinthecloud.com/*
http://www.rackspace.com/*
http://www.raydash.com/*
http://www.redisgreen.net/*
http://www.reliacloud.com/*
http://www.restfulmetrics.com/*
http://www.s3stat.com/*
http://www.scalextreme.com/*
http://www.scalr.net/*
http://www.schedulista.com/*
http://www.scrumninja.com/*
http://www.searchify.com/*
http://www.servedby.net/*
http://www.serverdensity.com/*
http://www.sessioncam.com/*
http://www.sharedworkforce.com/*
http://www.simpledeployer.com/*
http://www.simpletix.com/*
http://www.smartscalesystems.com/*
http://www.softlayer.com/*cloudlayer/
http://www.solidifyapp.com/*
http://www.sourceaudio.com/*
http://www.sourceninja.com/*
http://www.sprint.im/*
http://www.squarespace.com/*
http://www.standingcloud.com/*
http://www.statsmix.com/*
http://www.statuscake.com/*
http://www.stillsecure.com/*
http://www.targetprocess.com/*
http://www.thestudentcloud.co.uk/*
http://www.tinder.se/*
http://www.tokbox.com/*
http://www.treasure-data.com/*
http://www.tripwireapp.com/*
http://www.twilio.com/*
http://www.typetalk.in/*
http://www.unotelly.com/*
http://www.uppsite.com/*
http://www.uptimehost.com/*
http://www.uservoice.com/*
http://www.vanillaforums.com/*
http://www.vi.net/*
http://www.vidmeup.com/*
http://www.virb.com/*
http://www.w3counter.com/*
http://www.webbynode.com/*
http://www.webfaction.com/*
http://www.websnapr.com/*
http://www.yunio.com/*
http://www.zadarastorage.com/*
http://www.zencash.com/*
http://www.zencoder.com/*
http://www.zendesk.com/*
http://www.zoneedit.com/*
http://www1.net/*
http://wwwizer.com/*
http://xeround.com/*
http://zonomi.com/*
https://*.30loops.net/*
https://*.appharbor.com/*
https://*.beetil.com/*
https://*.cacoo.com/*
https://*.cheddargetter.com/*
https://*.circleci.com/*
https://*.cloudant.com/*
https://*.dbinsights.herokuapp.com/*
https://*.do.com/*
https://*.drive.google.com/*
https://*.dynometer.restful-labs.com/*
https://*.evernote.com/*
https://*.facebook.com/*
https://*.gathercontent.com/*
https://*.gondor.io/*
https://*.hub.turnkeylinux.org/
https://*.logentries.com/*
https://*.mail.google.com/*
https://*.mixpanel.com/*
https://*.mongolab.com/*
https://*.moqups.com/*
https://*.mybackupbox.com/*
https://*.onedrive.live.com/*
https://*.openredis.com/*
https://*.papertrailapp.com/*
https://*.phpfog.com/*
https://*.phraseapp.com/*
https://*.plus.google.com/*
https://*.saas.found.no/
https://*.searchbox.io/*
https://*.sendicate.net/*
https://*.serps.com/*
https://*.serverpilot.io/*
https://*.shellycloud.com/*
https://*.silverline.librato.com/*
https://*.slack.com/*
https://*.stillalive.com/*
https://*.stripe.com/*
https://*.twitter.com/*
https://*.ustream.tv/*
https://*.workfu.com/*
https://*.wunderlist.com/*
https://*.airbrake.io/*
https://*.atendy.com/*
https://*.atlassian.com/*
https://*.backlog.jp/
https://*.bigml.com/*
https://*.blamestella.com/*
https://*.cloudassault.com/*
https://*.com/*putenext.com/*
https://*.custora.com/*
https://*.dashmin.com/*
https://*.digitalocean.com/*
https://*.dropbox.com/*
https://*.fuzebox.com/*
https://*.getsentry.com/*
https://*.hipchat.com/*
https://*.hpcloud.com/*
https://*.intercom.io/*
https://*.mailjet.com/*
https://*.mailrox.com/*
https://*.megacloud.com/*
https://*.optimizely.com/*
https://*.parse.com/*
https://*.plannerhq.com/*
https://*.powerdns.net/*
https://*.qualtrics.com/*
https://*.railsonfire.com/*
https://*.rdbhost.com/*
https://*.reinvigorate.net/*
https://*.rjmetrics.com/*index
https://*.robowhois.com/*
https://*.site24x7.com/*
https://*.skinnyboard.com/*
https://*.stormondemand.com/*
https://*.tddium.com/*
https://*.ticksy.com/*
https://*.whistlephone.com/*
https://30loops.net/*
https://appharbor.com/*
https://beetil.com/*
https://cacoo.com/*
https://cheddargetter.com/*
https://circleci.com/*
https://cloudant.com/*
https://compilr.com/*
https://dbinsights.herokuapp.com/*
https://do.com/*
https://drive.google.com/*
https://dynometer.restful-labs.com/*
https://evernote.com/*
https://gathercontent.com/*
https://gondor.io/*
https://hub.turnkeylinux.org/
https://logentries.com/*
https://mail.google.com/*
https://mixpanel.com/*
https://mongolab.com/*
https://moqups.com/*
https://mybackupbox.com/*
https://onedrive.live.com/*
https://openredis.com/*
https://papertrailapp.com/*
https://phpfog.com/*
https://phraseapp.com/*
https://plus.google.com/*
https://saas.found.no/*
https://searchbox.io/*
https://sendicate.net/*
https://serps.com/*
https://serverpilot.io/*
https://shellycloud.com/*
https://silverline.librato.com/*
https://slack.com/*
https://stillalive.com/*
https://stripe.com/*
https://twitter.com/*
https://watershed.ustream.tv/*
https://workfu.com/*
https://www.airbrake.io/*
https://www.atendy.com/*
https://www.atlassian.com/*
https://www.backlog.jp/*
https://www.bigml.com/*
https://www.blamestella.com/*
https://www.cloudassault.com/*
https://www.com/*putenext.com/*
https://www.custora.com/*
https://www.dashmin.com/*
https://www.digitalocean.com/*
https://www.dropbox.com/*
https://www.facebook.com/*
https://www.fuzebox.com/*
https://www.getsentry.com/*
https://www.hipchat.com/*
https://www.hpcloud.com/*
https://www.intercom.io/*
https://www.mailjet.com/*
https://www.mailrox.com/*
https://www.megacloud.com/*
https://www.optimizely.com/*
https://www.parse.com/*
https://www.plannerhq.com/*tour
https://www.powerdns.net/*
https://www.qualtrics.com/*
https://www.railsonfire.com/*
https://www.rdbhost.com/*
https://www.reinvigorate.net/*
https://www.rjmetrics.com/*index
https://www.robowhois.com/*
https://www.site24x7.com/*
https://www.skinnyboard.com/*
https://www.stormondemand.com/*
https://www.tddium.com/*
https://www.ticksy.com/*
https://www.whistlephone.com/*
https://www.wunderlist.com/*