Firewall Wizards mailing list archives
Re: encapsulated protocols?
From: dharris () kcp com
Date: Wed, 4 Feb 1998 11:33:08 -0600
Hire people not smart enough to install plugins. Control the configuration of all systems and don't allow this plugin. Use the perfect firewall - a $5.95 pair of wire clippers. Go back to the archives and read about intrusion detectors. Block access to the sites which cooperate with the plugin. Parse the incoming stream and block invocation of the plugin. Not clever, but ideas still. ______________________________ Reply Separator _________________________________ Subject: encapsulated protocols? Author: "Mark Horn [ Net Ops ]" <mhorn () funb com> at INTERNET-MAIL Date: 2/3/98 11:43 AM Hello, Lately, I've noticed an increasing number of network protocols that are encapsulating themselves over existing protocols. And then using some of our proxies to navigate anywhere on the Internet. <snip> The end result is that any protocol can traverse the firewall. You simply need to get the "plugin" to the inside, and then you're home free. Does anyone have any clever ideas as to how to prevent this encapsulation trick? -- Mark Horn <mhorn () funb com> PGP Public Key available at: http://www.es.net/hypertext/pgp.html PGP KeyID/fingerprt: 00CBA571/32 4E 4E 48 EA C6 74 2E 25 8A 76 E6 04 A1 7F C1
Current thread:
- Re: IPsec and firewalls, (continued)
- Re: IPsec and firewalls Adam Shostack (Feb 09)
- Re: IPsec and firewalls carson (Feb 09)
- Effect of full disk on logging under FW-1 v 2.1? Bret Watson (Feb 09)
- Re: IPsec and firewalls Ted Doty (Feb 09)
- Re: encapsulated protocols? Aleph One (Feb 07)
- Re: encapsulated protocols? Adam Shostack (Feb 07)
- Re: encapsulated protocols? Larry J. Hughes Jr. (Feb 09)
- Re: encapsulated protocols? Jeromie Jackson (Feb 07)
- Re: encapsulated protocols? Marcus J. Ranum (Feb 09)