Problem

Due to recent attention around various malicious applications, one example is MOMO, we have been asked a lot about how to block searches for the name of these applications.

Resolution

The Guardian web filter can filter based on search terms. We can create a custom category with search terms included, that we want to block users from searching for. For this to work effectively, certain requirements do need to be met.

NOTE: HTTPS decrypt and inspect has to be enabled, as a minimum, for the category "Web Search". Without HTTPS inspection the Guardian filter cannot see the searches or the results.

Step-by-Step

Navigate to "Guardian » Policy objects » Categories" and enter a name for your new custom category like "Blocked Search Terms".

Expand the advanced section and find the Search term filtering input field. Add any search terms that should be blocked here in square brackets. So for this specific example we should be adding:

[momo]

Other terms can be added here as well.

NOTE: Be mindful of overblocking. If a search term is added like:

[sex]

That would also block searches for Sussex and Middlesex. Spaces can also be used within the brackets so instead one could add:

[ sex ]

Which will not match on Middlesex for example.

Once the new category has been created, add this to a block policy in the "Guardian » Web filter » Manage policies" section.