Educause Security Discussion mailing list archives

Re: Ports/applications permitted for Guest Access

From: Robert Lau <rslau () USC EDU>
Date: Sun, 11 Sep 2011 07:39:21 -0700

Is anybody doing protocol/application inspection?  Once ports 80/443/22/etc are allowed, an app can pump any data 
through; it does not have to be http/https/ssh/etc.  In olden days, this would probably only be done by a clueful user, 
but many applications do this automatically now specifically to handle port restrictions.

-robert

Current thread:

Ports/applications permitted for Guest Access Roger A Safian (Sep 09)
- Re: Ports/applications permitted for Guest Access Kevin Wilcox (Sep 09)
  - Re: Ports/applications permitted for Guest Access Derek Diget (Sep 09)
- Re: Ports/applications permitted for Guest Access Rowe, Ken (Sep 09)
  - Re: Ports/applications permitted for Guest Access Robert Lau (Sep 11)
    - Re: Ports/applications permitted for Guest Access Dave Koontz (Sep 11)
    - Re: Ports/applications permitted for Guest Access Shannon Roddy (Sep 11)
    - Re: Ports/applications permitted for Guest Access Valdis Kletnieks (Sep 11)
    - Re: Ports/applications permitted for Guest Access David Gillett (Sep 12)
    - Re: Ports/applications permitted for Guest Access Robert Lau (Sep 11)
    - Re: Ports/applications permitted for Guest Access Kevin Wilcox (Sep 16)
    - Re: Ports/applications permitted for Guest Access (deep packet inspection) Barron Hulver (Sep 11)
- Re: Ports/applications permitted for Guest Access Roger A Safian (Sep 16)
  - Re: Ports/applications permitted for Guest Access Matthew Gracie (Sep 19)
  - Re: Ports/applications permitted for Guest Access Ed Zawacki (Sep 20)

(Thread continues...)