[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] HTTP Proxy Security Hole!!!
Greetings! Snyder, Ryan wrote: Try this on your firewall if you are running HTTP Proxy! Checkpoint has yet to release a fix. [...] I also found out that one can telnet to machines on a network that are protected by the Firewall. I just tested and confirmed for FW1 V4.1 SP5 (plus hotfixes).
Restrictions found: - connects are only possible if the firewall module is allowed access (i.e. via policy/properties, specific rules or "Any (dst) (svc)..." rules - you have to allow "CONNECT" - is enabled if you allowed "Tunneling" (General tab) connection method or did not delete the "*" in "Other" Methods (Match tab) Fast workarounds: - Change your ressource settings to filter out CONNECT commands, i.e. * disable HTTP tunneling * check that "Other" method is specified NOT to match CONNECT (i.e. remove the default wildcard) - disallow access from the firewall module (->Properties) - replace in all your rules containing the service HTTP+Resource this part with plain HTTP. Yes, you loose some content security but at least you don't compromise your other servers
Puzzled Volker -- ------------------------------------------------------------------- [email protected] discon GmbH IT-Security Consulting Wrangelstrasse 100 http://www.discon.de/ 10997 Berlin, Germany ------------------------------------------------------------------- PGP-Fingerprint: 5323 a4f7 a7c2 b8ef 4653 05ce d2ea 2b74 b94c c68e ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|