PaulDotCom mailing list archives

Bypassing Vontu

From: denied39 at gmail.com (Michael Boyd)
Date: Thu, 22 Oct 2009 12:01:11 -0400

If you have the ability, boot off a live-linux distro and copy to USB
(or whatever). I asked Vontu (before  being bought by Symantec) about
this and they said they didn't have a solution for this vector.

Mike

On Thu, Oct 22, 2009 at 11:44, Monkey Daemon
<monkeywebdaemon at googlemail.com> wrote:

2009/10/22 Brian Schultz <theconqueror at gmail.com>:

Our security department is testing out Symantec's Vontu and I am playing the
guinea pig and?have to try and get documents out of our company's
environment. I have a really basic understanding of how it works. It has a
span port sitting and listening to all outgoing web traffic and there is
also an agent that sits on desktops and watches to see if any sensitive
information leaves via USB drive or e-mail.

Does anyone have any whitepapers or?info regarding how it actually works or
any tactics I should try?


Switch off the box, open the case and walk out with the disk in your
briefcase/laptop bag?

MWD
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

Bypassing Vontu Brian Schultz (Oct 22)
- Bypassing Vontu Monkey Daemon (Oct 22)
  - Bypassing Vontu James Costello (Oct 22)
  - Bypassing Vontu Michael Boyd (Oct 22)
  - Bypassing Vontu Jason Jones (Oct 22)
  - Bypassing Vontu Dan Baxter (Oct 22)
  - Bypassing Vontu Nathan Sweaney (Oct 22)
    - Bypassing Vontu PJ McGarvey (Oct 22)
  - Bypassing Vontu Michael Dickey (Oct 22)
- Bypassing Vontu Robin Wood (Oct 22)
- Bypassing Vontu Chris Merkel (Oct 22)
- Bypassing Vontu Jim Halfpenny (Oct 22)
- Bypassing Vontu Ron Gula (Oct 22)
- Bypassing Vontu Raffi Jamgotchian (Oct 22)

(Thread continues...)