Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] [fw-1] Instant Messenger bypass FW-1

To: [email protected]
Subject: Re: [FW-1] [fw-1] Instant Messenger bypass FW-1
From: Brian Noecker <[email protected]>
Date: Wed, 12 Jun 2002 14:30:31 -0600
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Our Jabber IM product allows port 80 tunneling, but most customers simply
don't implement this feature for security reasons.  From the customers we
deal with, most will block known ports, but some implement layer 4-7
switching solutions in order to block content (such as IM traffic through
port 80).

-----Original Message-----
From: Ulysees [mailto:[email protected]]
Sent: Wednesday, June 12, 2002 8:46 AM
To: [email protected]
Subject: Re: [FW-1] [fw-1] Instant Messenger bypass FW-1


Is it just me or does this actually sound like a good use for security
servers and kernel level filtering ? Well assuming you could actually do it
*hint hint*

uly

----- Original Message -----
From: "Kim Longenbaugh" <[email protected]>
To: <[email protected]>
Sent: Wednesday, June 12, 2002 3:26 PM
Subject: Re: [FW-1] [fw-1] Instant Messenger bypass FW-1


> There is a bunch of info from many posters in the archives about blocking
IM.  Most say it's not enough to block ports (like the article you cite
says), you have to block ip addresses of login servers etc.
> Search the archives for more info.
>
> The majority of posters in this list think allowing IM is a definite risk.
A lot of industry publications agree.
>
> >>> [email protected] 06/12/02 08:04AM >>>
> Folks,
>
> I came to know about an article of Gartner saying that their are some IM
bypassing Firewall by scanning open ports.
> Has anybody tested this CP FW-1 NG? I am afraid if this is a problem with
FW-1!!!
>
>
>  Firewall Bypass Technology
>
>
>  AOL's Instant Messenger has a uniquely slippery client that is
>  designed to bypass firewall port blocking technology, making the
>  product easy to configure from behind a firewall. For example, the
>  AOL client will use any available port, scanning even those reserved
>  for domain naming system (DNS) lookup. This technology enables
>  unsophisticated users to sneak past a firewall with relative ease,
>  effectively establishing breaches in the corporate firewall.
>
>
>
>
> Kaustubh A.
> Technical Consultant
> HP Services
> --------------------------------------------------------------------------
---------
> 101-105 Enterprise Center, CTS#55 Off Neharu Road,
> Vile Parle (East) Mumbai 400099.
> *+91 (0) 22.616.7331 *GSM:> *:   [email protected]
> URL:  http://www.ho.com/in
> --------------------------------------------------------------------------
---------
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: Re: [FW-1] [fw-1] Instant Messenger bypass FW-1
Next by Date: Re: [FW-1] Question about 4.1 Mgmt. SW
Previous by thread: Re: [FW-1] [fw-1] Instant Messenger bypass FW-1
Next by thread: Re: [FW-1] [fw-1] Instant Messenger bypass FW-1
Index(es):
- Date
- Thread