Full Disclosure mailing list archives
blocking SkyPE?
From: Alain Fauconnet <alain () ait ac th>
Date: Mon, 24 Jan 2005 15:57:44 +0700
Hello list, This may be a bit borderline topic. Feel free to redirect me to a more appropriate place for this discussion if you know one. I need to block SkyPE at the border of our network for many reasons. It's not an easy task. The following paper: http://www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf gives a lot of insight to the protocol. This stuff has been obviously engineered to bypass any port-based or IP-based blocks and L7 protocol identification. The folks of L7-filter have a pattern at http://l7-filter.sourceforge.net/layer7-protocols/protocols/skype.pat but it's classified as having 'marginal' effectiveness. Based on the paper mentioned above, the weak point might be the direct connection to the SkyPE login servers, but in my observation, login process seems to possibly take place through supernodes as well in recent versions. Has anyone worked on this? Googling doesn't return much useful. Greets, _Alain_ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- blocking SkyPE? Alain Fauconnet (Jan 24)
- RE: blocking SkyPE? lists-security (Jan 24)
- RE: blocking SkyPE? Brenno J.S.A.A.F. de Winter (Jan 24)
- Message not available
- Re: blocking SkyPE? Alain Fauconnet (Jan 24)
- Re: blocking SkyPE? Valdis . Kletnieks (Jan 24)
- Message not available
- Re: blocking SkyPE? Alain Fauconnet (Jan 24)
- RE: blocking SkyPE? lists-security (Jan 25)
- Re: blocking SkyPE? Alain Fauconnet (Jan 25)
- RE: blocking SkyPE? lists-security (Jan 25)
- Re: blocking SkyPE? Alain Fauconnet (Jan 25)
- Re: blocking SkyPE? Alain Fauconnet (Jan 24)
- RE: blocking SkyPE? lists-security (Jan 24)