Re: [fw-wiz] Application-level Attacks

From: Marcus J. Ranum (mjr_at_ranum.com)
Date: 01/29/05

Next message: Marcus J. Ranum: "RE: [fw-wiz] Multiple firewalls from different manufactureres"

Previous message: Marcus J. Ranum: "Re: [fw-wiz] Application-level Attacks"
In reply to: Adam Shostack: "Re: [fw-wiz] Application-level Attacks"
Next in thread: Adam Shostack: "Re: [fw-wiz] Application-level Attacks"
Reply: Adam Shostack: "Re: [fw-wiz] Application-level Attacks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Adam Shostack <adam@homeport.org>, vbwilliams@neb.rr.com
Date: Sat, 29 Jan 2005 04:30:29 -0500

Adam Shostack wrote:
>I think that the "new" application layer attacks are things like sql
>injection for data theft, phishing, etc. I think perhaps business
>layer attacks makes more sense as a name.

Those are "social engineering attacks"
:)
AKA "layer 8 attacks"
AKA "user layer attacks"
AKA "meat layer attacks"

By the way, you DON'T want to see what a meat layer buffer overrun
looks like....

mjr.

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Next message: Marcus J. Ranum: "RE: [fw-wiz] Multiple firewalls from different manufactureres"

Previous message: Marcus J. Ranum: "Re: [fw-wiz] Application-level Attacks"
In reply to: Adam Shostack: "Re: [fw-wiz] Application-level Attacks"
Next in thread: Adam Shostack: "Re: [fw-wiz] Application-level Attacks"
Reply: Adam Shostack: "Re: [fw-wiz] Application-level Attacks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]