Re: can Hopster traffic be blocked?

• Previous message: Alan Hicks: "RE: can Hopster traffic be blocked?"
• In reply to: Charles Weidner (Accenture): "RE: can Hopster traffic be blocked?"
• Next in thread: Prakash Purushotham: "Re: can Hopster traffic be blocked?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: focus-linux@securityfocus.com
Date: Mon, 9 Aug 2004 08:49:24 -0500

On Thursday 05 August 2004 18:30, Charles Weidner (Accenture) wrote:
> If you have a policy in the company that the users should not be able
> to install unauthorized software on their machine why not just not
> allow admin access on the individual workstation. This should
> alleviate the problem whether or not the workstations in your company
> are linux or windows.

On Linux, one might be able to set up some form of ACL system so that
this would be the case. But, on Windows, what if one of these HTTP
tunneling services writes a version of their software that resides in a
single executable? Then the user just has to save it to their desktop
(or My Documents, or somewhere they have write access), run it, and
voila. Bypassed.

-Michael

• Previous message: Alan Hicks: "RE: can Hopster traffic be blocked?"
• In reply to: Charles Weidner (Accenture): "RE: can Hopster traffic be blocked?"
• Next in thread: Prakash Purushotham: "Re: can Hopster traffic be blocked?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]