Re: [fw-wiz] httport 3snf

From: Devdas Bhagat (dvb@users.sourceforge.net)
Date: 10/21/02

Next message: Christopher Hicks: "Re: [fw-wiz] httport 3snf"
Previous message: Dawes, Rogan (ZA - Johannesburg): "RE: [fw-wiz] httport 3snf"
In reply to: Robert E. Martin: "[fw-wiz] httport 3snf"
Next in thread: Christopher Hicks: "Re: [fw-wiz] httport 3snf"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Devdas Bhagat <dvb@users.sourceforge.net>
To: "Robert E. Martin" <rmartin@fishburne.org>
Date: Mon Oct 21 13:42:19 2002

On 21/10/02 09:56 -0400, Robert E. Martin wrote:
> Hi there.
> We run Redhat 6.0 with ipchains and have been able to block AIM and
Ouch, an old .0 release od Redhat. Hopefully, it has been patched and
kept up to date.

> others with this system quite effectively, however, our students here
> have discovered HTTport 3.snf to bypass our proxy server using a SSL
Why not enforce policy on desktops?

> connection. Is there a way to stop this without bringing the rest of the
> newtork to it's knees? I have been unable to sniff the packets
Pretty much a FAQ. This is a social problem and should preferably be
solved by social means (read AUP).
Working around this technically is usually painful.

> successfully enough to find out what ip address the host ssl server is,
> but I am able to launch the program on my local machine, sniff the
You could use a SSL proxy, which intercepts SSL requests, and makes an
outbound SSL connection on behalf of the user.
See the Zorp proxy.

> packets and see that the first thing that happens is a DNS Request. Can
> I block DNS requests for a specifid url, ipaddress or other entry via
> IPCHAINS?
No, but you can block them using your DNS server. Just make your server
authoritative for AOL/MSN/Yahoo, and resolve all these domains to
127.0.0.1

Devdas Bhagat

Next message: Christopher Hicks: "Re: [fw-wiz] httport 3snf"
Previous message: Dawes, Rogan (ZA - Johannesburg): "RE: [fw-wiz] httport 3snf"
In reply to: Robert E. Martin: "[fw-wiz] httport 3snf"
Next in thread: Christopher Hicks: "Re: [fw-wiz] httport 3snf"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Most users cant connect to our SSL-- help!
... I've included all relevant SSL settings from our ... Subject: Large percentage of customers cannot connect to https: ... server, which then grinds indefinitely. ... "2) Your secure order form is not working. ...
(comp.security.misc)
Most users cant connect to our SSL-- help!
... I've included all relevant SSL settings from our ... Subject: Large percentage of customers cannot connect to https: ... server, which then grinds indefinitely. ... "2) Your secure order form is not working. ...
(comp.security.ssh)
Most users cant connect to our SSL-- help!
... I've included all relevant SSL settings from our ... Subject: Large percentage of customers cannot connect to https: ... server, which then grinds indefinitely. ... "2) Your secure order form is not working. ...
(comp.security.unix)
Re: Antw: Re: LDAP Authentication Problem
... TLSv1 und wird auf einen SSL Client Hello Request mit TLSv1 nicht ... antworten anstatt ein SSLv3 Server Hello. ... the LDAP PAM module and the shadow package. ...
(de.comp.sys.novell)
RE: php4
... Mod_php4 only gets loaded if you define SSL. ... Of course I restarted apache after the install... ... # Based upon the NCSA server configuration files originally by Rob McCool. ... Not all browsers support this. ...
(freebsd-questions)