Firewall Wizards mailing list archives
Re: Protocol inspection
From: "Magosányi Árpád" <m4gw4s () gmail com>
Date: Mon, 31 Mar 2008 18:55:04 +0200
2008/3/31, Darden, Patrick S. <darden () armc org>:
I don't know of a level 4 above, which would be: 4. application proxy (SQL proxy that filters out all queries by default except those that match specific criteria, i.e. a SQL whitelist ruleset)
(Actually SQL injection is in the http request, and in case of POST, also in the body. So you need a http proxy to defend against it on a firewall.)
I think if someone did make such a beastie, it would make waves.
Well, some 7 years ago we also thought so. So we created Zorp. Very few have shown interest since (well, we can give food to a bunch of developers, but no world domination still), and even fewer use more than a tenth of its features. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Protocol inspection Josh (Mar 28)
- Re: Protocol inspection Darden, Patrick S. (Mar 31)
- Re: Protocol inspection Magosányi Árpád (Mar 31)
- Re: Protocol inspection Marcus J. Ranum (Mar 31)
- Re: Protocol inspection Brian Loe (Mar 31)
- Re: Protocol inspection Magosányi Árpád (Mar 31)
- Re: Protocol inspection Paul Melson (Mar 31)
- Re: Protocol inspection Darden, Patrick S. (Mar 31)