Re: [fw-wiz] Blocking Teamviewer
I found this IDS rules for detection:
tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"DynGate TeamViewer";
flow:from_client,from_server,established; content:"DynGate";
pcre:"/din.aspx ?s="; pcre:"&client=DynGate&p="; depth:12; sid:6661; rev:1;)
If you use Active Directory, you could block teamviewer.exe through a
Group policy.
--
Kind regards
Flemming Laugaard
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Relevant Pages
- Active Directory
... Having restored my DC from a backup. ... new objects in Active Directory or view Group policy. ... Kind Regards ...
(microsoft.public.windows.server.active_directory) - Re: Event ID 1101 and 1030
... OU=FileServers,OU=AllServers,DC=DomainName,DC=org in Win2000 Active Directory. ... The first GPO is applied to Domain. ... right-click the OU to which you applied Group Policy ...
(microsoft.public.win2000.active_directory) - Re: Event ID 1058
... Failing SYSVOL replication problems may cause ... this can cause Group Policy probs. ... >>> in the Active Directory from the application directory partition ...
(microsoft.public.win2000.dns) - Re: Deploying an msi application via group policy
... Active Directory network. ... Trend office scan has a tool for creating a MSI - I have used this tool ... > What is the application that you are trying to deploy via Group Policy? ... You deploy applications either to user account objects or to ...
(microsoft.public.win2000.active_directory) - Re: Using Group Policy to give install permission
... Group Policy is simply (well, ... Active Directory there is only one Organizational Unit: ... Your user account objects or computer account objects must directly reside ... in the Organizational Unit to which you linked the GPO. ...
(microsoft.public.win2000.group_policy) |
|
