Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Blocking Messenger Applications

To: [email protected]
Subject: Re: [FW-1] Blocking Messenger Applications
From: Shawn Behrens <[email protected]>
Date: Tue, 5 Aug 2003 16:33:59 -0400
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

> Never mind, I think I see those options under Smart Defense.  The only
> problem is, for that to work I believe the only protocol you can allow
> outbound is HTTP, otherwise the IM services would use any other
> available ports.  I wonder if they could use the HTTPS port too?

Whether an IM service will use HTTPS depends entirely on that service, of
course. I believe AIM, for example, can use HTTPS.

HTTPS traffic is encrypted, thus the firewall can't inspect the headers. The
only way to get around that is to proxy or transparently proxy the https
connection (client connects to proxy, proxy connects to server), and then
the proxy would inspect the traffic before passing it on.

You can also attempt to block HTTPS connections to known IM servers. That's
a bit of a cat-and-mouse game, though.

Yours
Shawn


Please note that:

1. This e-mail may constitute privileged information. If you are not the intended recipient, you have received this confidential email and any attachments transmitted with it in error and you must not disclose, copy, circulate or in any other way use or rely on this information.
2. E-mails to and from the company are monitored for operational reasons and in accordance with lawful business practices.
3. The contents of this email are those of the individual and do not necessarily represent the views of the company.
4. The company does not conclude contracts by email and all negotiations are subject to contract.
5. The company accepts no responsibility once an e-mail and any attachments is sent.

http://www.integralis.com

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: Re: [FW-1] Blocking Messenger Applications
Next by Date: [FW-1] FW-1 and Cisco ISO
Previous by thread: Re: [FW-1] Blocking Messenger Applications
Next by thread: Re: [FW-1] Blocking Messenger Applications
Index(es):
- Date
- Thread