RE: Blocking Kazaa
From: Daniel Ferguson (daniel.ferguson@willowmead.org)Date: 01/16/02
- Previous message: Jon Erickson CCG: "RE: Arp Spoofing with wireless networks"
- In reply to: Omachonu Ogali: "Re: Blocking Kazaa"
- Next in thread: Calhoun, Heath: "RE: Blocking Kazaa"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Daniel Ferguson" <daniel.ferguson@willowmead.org> To: <security-basics@securityfocus.com> Date: Wed, 16 Jan 2002 19:09:15 -0000
try using the "outbound" command, we use it to block web access at the pix.
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v44/pix44cfg/p
ix44cmd.htm#xtocid892831
-----Original Message-----
From: Omachonu Ogali [mailto:missnglnk@informationwave.net]
Sent: 15 January 2002 00:10
To: leon; 'Benoit Joseph'; 'Calhoun, Heath'
Cc: security-basics@securityfocus.com
Subject: Re: Blocking Kazaa
For several possible reasons:
a) He may not be the system administrator.
b) The system administrators haven't restricted that permission to certain
users.
c) It's much easier to block tcp/1214 than it is to police several hundred
workstations.
d) If people actually obeyed rules when told, there'd be no need for any
such thing as
'rule enforcement'.
This isn't a perfect world, ya know.
-- Omachonu Ogali missnglnk@informationwave.net http://www.informationwave.net/~missnglnk ----- Original Message ----- From: "leon" <leon@inyc.com> To: "'Benoit Joseph'" <benoit.joseph@teledisnet.be>; "'Calhoun, Heath'" <CalhounH@gsci.state.ms.us> Cc: <security-basics@securityfocus.com> Sent: Sunday, January 13, 2002 12:26 PM Subject: RE: Blocking Kazaa> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Why cant you just forbid users from installing there own applications > (especially ones that just recently were installing spyware without > the users knowledge) in an everyone e-mail and then refer users who > still proceed to do this anyway to the corporate security policy? > > Cheers, > > Leon > > - -----Original Message----- > From: Benoit Joseph [mailto:benoit.joseph@teledisnet.be] > Sent: Tuesday, January 08, 2002 4:55 PM > To: Calhoun, Heath > Cc: security-basics@securityfocus.com > Subject: Re: Blocking Kazaa > > > Can't you just block the port 1214? I think that if you block it on > your > firewall, you'll have no problem. > > Can't you use some ACL rules? I believe the IOS has a FW. > > Bye > > > On Mon, Jan 07, 2002 at 03:53:50PM, Calhoun, Heath wrote: > > I am attempting to block the multimedia search program kazaa on a > > pix 515 running ios 4.4. > > Pinging the Kazaa website, I got a address of 213.248.107.10. The > > program uses port 1214. > > I need to block any access to the website and to the program. I > > have tried several conduits > > without success. > > > > Any help is appreciated. > > > > Heath Calhoun > - ---end quoted text--- > > - -- > > Benoit JOSEPH > Manex SPRL: benoit.joseph@manex.be > Perso: joker@baby-linux.net > benoit.joseph@teledisnet.be > > -----BEGIN PGP SIGNATURE----- > Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com> > > iQA/AwUBPEHDLdqAgf0xoaEuEQIrRACg0GlCfft4xA/MbgvqxQYjdlKvR9oAoJnD > f5fthJRPLXeZrtZm4nFzjDAX > =TSNg > -----END PGP SIGNATURE----- > >
- Previous message: Jon Erickson CCG: "RE: Arp Spoofing with wireless networks"
- In reply to: Omachonu Ogali: "Re: Blocking Kazaa"
- Next in thread: Calhoun, Heath: "RE: Blocking Kazaa"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
