Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SSL

From: "R. DuFresne" <dufresne () sysinfo com>
Date: Wed, 17 Oct 2001 09:37:27 -0400 (EDT)

Gary,

I don;t think nimda infects in that fashoin, but, the code red variants do
for sure.  best bet against such is keeping all the systems up to date on
patches and anti-viri SW as far as I know, though, you can filter on the
code red sigs to prevent the traffic coming in.  

Thanks,

Ron DuFresne

On Tue, 16 Oct 2001, Crumrine, Gary L wrote:



      Just a quick question on SSL.  If I allow SSL outbound, and a user
browses a web site that is corrupt with something harmful like NIMDA, is it
possible that they will infect my network... and will the firewall not pass
it along without checking?

      If true, how can I combat this?  Is there a product that will stop
the packets and inspect them before being returned to the requester? 
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards



-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior consultant:  darkstar.sysinfo.com
                  http://darkstar.sysinfo.com

"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
                -- Johnny Hart

testing, only testing, and damn good at it too!

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: