[Full-Disclosure] RE: By passing surf control

From: Otero, Hernan (EDS) (HOtero_at_lanchile.cl)
Date: 02/26/04

  • Next message: cdowns: "Re: [Full-Disclosure] RE: By passing surf control" 
    To: Kudakwashe Chafa-Govha <KChafa-Govha@bankunitedfla.com>, "'pen-test@securityfocus.com'" <pen-test@securityfocus.com>
Date: Wed, 25 Feb 2004 19:05:26 -0400

    That is very easy if you can have a machine in the net with ssh server...

    With a standard proxy that support CONNECT METHOD (Typically HTTPS
    connections) using putty and a ssh server listening in port 443 you can
    forward any port via tunneling.

    Look at your logs looking for an endless HTTPS connection..., with tons of
    traffic.

    Regards,

    Hernán

    -----Original Message-----
    From: Kudakwashe Chafa-Govha [mailto:KChafa-Govha@bankunitedfla.com]
    Sent: Miércoles, 25 de Febrero de 2004 17:04
    To: 'pen-test@securityfocus.com'
    Subject: By passing surf control

    Hello Group,

    Does anyone have any information on how to by pass a web content filter? We
    use Surf Control to monitor and filter web content. However, I have one of
    my users who was able to by pass this. We tried using a proxy to by pass
    just for testing purposes but it did not work. I am still trying to figure
    out what other method he used to do so. If anyone has any information , it
    will be greatly appreciated.

    Thanks

    Kuda

    ****************************************************************************
    **********************
    The contents of this email and any attachments are confidential.
    It is intended for the named recipient(s) only.
    If you have received this email in error please notify the system manager or
    the
    sender immediately. Unless you are the intended recipient or his/her
    representative
    you are not authorized to, and must not, read, copy, distribute, use or
    retain this
    message or any part of it.
    ****************************************************************************
    **********************

    ---------------------------------------------------------------------------
    ----------------------------------------------------------------------------

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: cdowns: "Re: [Full-Disclosure] RE: By passing surf control"

    Relevant Pages

    • Re: SSH Connecting through Firewall
      ... > We have a CVS server that accepts SSH connections only. ... This firewall basically allows HTTP, ... > HTTPS, FTP connections using a proxy server. ...
      (comp.security.ssh)
    • Re: HTTP =?ISO-8859-15?Q?=FCber?= SSH tunneln
      ... Da ich im Urlaub in Inet-Cafes ab und an mal nach Mails bei GMX schauen ... Ich habe einen Server bei mir zu hause. ... SSH zugreifen. ... per HTTPS und Passwortschutz zum lesen (mit etwas Scriptsprache auch ...
      (de.comp.os.unix.linux.misc)
    • SuSE Standard server logon problem
      ... I seem to be having a problem accessing the SuSE standard server web site, ... when connecting to https on the ... I've even tried changing the password (via ssh) or adding a new user. ...
      (alt.os.linux.suse)
    • Re: help... tunneling works with http but not https
      ... What is there about port forwarding to a remote proxy ... > server using SSH that allows http, but prevents https URLS from being ... Had nothing to do with SSH. ...
      (comp.security.ssh)
    • Re: Outlook 2003 cant see Exch 2003 over RPC
      ... To help you troubleshoot RPC try RPC Ping, ... working on the LAN side is my priority rather than the external HTTPS ... server endpoints and let me see what it's trying to do and perhaps what's ... You stated you did get RPC over HTTP to work for a while when the SBS ...
      (microsoft.public.exchange.setup)