How do you test your porn filter
Solution 1:
Explain to your boss and HR that you either have to hope the porn filter is working or will need to test it by going to inappropriate sites. Make sure you tell them when you're doing the test, and how long it will take so they know you're not "testing" the filter all day every day. Then they can decide whether they want to let you try and visit sites like that at work or hope the filters work by default.
The second option is to install it at home without telling your teenage son and see how long it takes him to get angry and ask why the internet isn't working like it used to.
Solution 2:
If there isn't, there should be. RFC2606 reserves several top level domains for test purposes with the understanding that they will never be assigned. It also reserves three second level names for use in documentation examples. The reservations are:
.test
(testing of DNS related code).example
(documentation and examples).invalid
(known and obviously invalid).localhost
(127.0.0.1 by any other name)example.com
,example.net
,example.org
(documentation)
From their described intended uses, it makes sense to me to use something like pr0n.test
as a defined positive. You could arrange for that name to resolve to something benign (BANG!) so that on failure of the filter you get something more interesting to happen than just a failed DNS lookup.
Solution 3:
We (at Smoothwall) have a "daily" URL in the lists to test the filter - with the date of list in the URL so you can tell you are up to date. Your vendor may provide a similar feature. It may well not be documented - ask them!
Alternatively, I like playboy.com. Should be blocked, but the homepage is always fairly benign - girls in bikinis etc. so low HR riskfactor if you just hit /.
Solution 4:
Not an adult site, but we use Poker Stars to test that our fitering is working. We block gambling at the same level. So if Poker Stars gets blocked, then the filtering system is working.
Solution 5:
I'll add a little something here...
The web filtering appliances I use all have a lookup feature that allows the submission of a URL to see how it will be categorized. This is done without actually initiating a connection to the site. In addition, the same content database can be referenced through an online submission form.
These filters have finer granularity in the rulesets and can distinguish between something like lingerie and swimwear, hardcore porn and simple adult content.
In addition, a browsing test is available directly from the appliance to simulate what the user would see during a browsing session.