WebApp Sec mailing list archives
RE: ISA Server and SQL Injection
From: "charles freeman" <the.freemans () comcast net>
Date: Wed, 16 Feb 2005 13:19:24 -0500
Application layer firewalls protect against sql injection and other real time layer 7 hacking events. ISA server would not. -----Original Message----- From: John Steer [mailto:jsteer () microsoft com] Sent: Monday, February 14, 2005 8:48 PM To: Rafael San Miguel; webappsec () securityfocus com Subject: RE: ISA Server and SQL Injection I'm not sure any firewall would stop a SQL Injection attack. This is an application issue -----Original Message----- From: Rafael San Miguel [mailto:smcsoc () yahoo es] Sent: Monday, February 14, 2005 10:06 AM To: webappsec () securityfocus com Subject: ISA Server and SQL Injection Hi all, ¿Has anyone tested ISA Server 2004 against SQL Injection attacks? I mean, ¿can it protect from this type of vulnerability? Thanks in advance. Greetings, Rafael San Miguel Carrasco
Current thread:
- RE: ISA Server and SQL Injection, (continued)
- RE: ISA Server and SQL Injection John Steer (Feb 15)
- Re: ISA Server and SQL Injection Matthieu Estrade (Feb 16)
- Re: ISA Server and SQL Injection Bogdan Tomchuk (Feb 16)
- Re: ISA Server and SQL Injection Matthieu Estrade (Feb 17)
- Re: ISA Server and SQL Injection Bogdan Tomchuk (Feb 17)
- Re: ISA Server and SQL Injection Matthieu Estrade (Feb 17)
- RE: ISA Server and SQL Injection Marty Block (Feb 19)
- Re: ISA Server and SQL Injection Matthieu Estrade (Feb 16)
- RE: ISA Server and SQL Injection John Steer (Feb 15)
- Re: ISA Server and SQL Injection fantomas (Feb 28)
- Re: ISA Server and SQL Injection Darren Bounds (Feb 16)
- Re: ISA Server and SQL Injection Matthieu Estrade (Feb 17)
- Re: ISA Server and SQL Injection Matthieu Estrade (Feb 19)
- RE: ISA Server and SQL Injection Ofer Shezaf (Feb 21)
- RE: ISA Server and SQL Injection Mark Curphey (Feb 21)
- Solutions, Results, and Comments - Was [ISA Server and SQL Injection] Jeremiah Grossman (Feb 23)
- Re: Solutions, Results, and Comments - Was [ISA Server and SQL Injection] David (Feb 23)
- Re: Solutions, Results, and Comments - Was [ISA Server and SQL Injection] Jeremiah Grossman (Feb 28)