Firewall Wizards mailing list archives

Re: SSL banking connections out of the firms firewall

From: Illes Marci <illes () c3 hu>
Date: Mon, 8 Oct 2001 15:37:51 +0200 (CEST)




On Mon, 1 Oct 2001, Paul D. Robertson wrote:

I stopeed a long time ago from trying to get commercial Firewall vendors
to MITM SSL legitimately for corporate networks.  There are now some MITM
programs available though, so if you want to make the connection as "bad"
as a normal HTTP connection (which is bad enough IMO) then you can
probably hack something up after several minutes of Web searching.


Hi,

 I know it is not a FW1 issue, but if you are looking for a commercial
Firewall dealing with SSL, than you should look at Zorp Application
Level Proxy Firewall Suite. It can handle http, pop3, imap, etc. over SSL
issues, with MITM techn. A GPL and a commercial version exist, and can
be found at http://www.balabit.hu

 If you need any fourther details, I am happy to answere. :)

bye,

Marton Illes


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

RE: SSL banking connections out of the firms firewall Henry Sieff (Oct 01)
- <Possible follow-ups>
- Re: SSL banking connections out of the firms firewall Rick Smith at Secure Computing (Oct 01)
- Re: SSL banking connections out of the firms firewall Paul D. Robertson (Oct 02)
  - Re: SSL banking connections out of the firms firewall Illes Marci (Oct 11)