Re: Rhapsody
From: Lars M. Hansen (badnews_at_hansenonline.net)
Date: 11/11/03
- Next message: Lars M. Hansen: "Re: How to Stop Web Activity Spying?"
- Previous message: Charles Newman: "Re: Rhapsody"
- In reply to: Charles Newman: "Re: Rhapsody"
- Next in thread: Charles Newman: "Re: Rhapsody"
- Reply: Charles Newman: "Re: Rhapsody"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 11 Nov 2003 19:09:11 GMT
On Tue, 11 Nov 2003 10:43:11 -0800, Charles Newman spoketh
>
>"Lars M. Hansen" <badnews@hansenonline.net> wrote in message
>news:ovt1rvcin4oh5fn9qbocss6gbvdskkdr3n@4ax.com...
>> On Tue, 11 Nov 2003 00:46:01 -0800, Charles Newman spoketh
>>
>> >X-No-Archive: Yes
>> >
>> > At last, a music service you can listen too from the office
>> >without the boss knowing what you are up to. I just
>> >subscribed to Rhapsody, and you get unlimited access to
>> >over 400 thousand tracks, for $10 a month.
>> > I have figured out you can listen to Rhapsody's selection
>> >of music, from work, without the boss knowing what you
>> >are up to. First, Rhapsody supports the use of a proxy
>> >server, so all you have to do is find an open proxy outside
>> >your company network, and the destination IP will me
>> >masked.
>> > Second, to prevent piracy, the data streams from
>> >Rhapsody are encrypted with SSL. Because the incoming
>> >data is encrypted, sniffers, such as Snort, wont pick up
>> >what is happening. Sure the book would be open, but it
>> >will all be in an unreadable language. Unless someone has
>> >figured out how to crack and sniff an SSL connection,
>> >there is no POSSIBLE way that the boss can find out
>> >what you are up to. If the encryption system can foil all
>> >but the most sophisticated pirates, it can foil any attempts
>> >by the boss to monitor what you are doing.
>> >
>>
>> Any type of firewall log analysis would pick up a large amount of
>> traffic with your computer as the destination. Encrypted or not, it
>> doesn't take a rocket scientist to figure out what's going on. That type
>> of continuous stream of packets could only be streaming media (video or
>> audio).
>>
>> If I were to spot something like that, it wouldn't take too long to
>> figure out that the source was an open proxy server, and I would assume
>> that someone was trying to bypass the security policy by using a proxy,
>> and I would block all access to/from the proxy server. A quick look at
>> the destination IP of the packets would point me to your workstation,
>> where I'm sure I'd be able to spot what was going on...
>
>
> However, there are proxies now running on all kinds
>of add port numbers. If someone were to use a proxy
>in a very high port range, say, it would probably go
>unnoticed. I have seen proxies on ports as high as
>45576. Something on a port that high would not be
>detetected right away.
>
>
No, it wouldn't. First of all, outbound access from businesses should be
restricted to only those which are necessary to run the business. That
means regular web service, and very few others.
Even if it isn't blocked, any decent firewall will report the number of
bytes going through the firewall, and it'll include the source and
destination IP address. A quick report over bandwidth usage by internal
IP address (a common report) will reveal that someone is using a large
amount of bandwidth. I've seen it, and the two people who were
continuously streaming MP3s through the firewall were showing on top of
the bandwidth usage report every day...
Lars M. Hansen
www.hansenonline.net
- Next message: Lars M. Hansen: "Re: How to Stop Web Activity Spying?"
- Previous message: Charles Newman: "Re: Rhapsody"
- In reply to: Charles Newman: "Re: Rhapsody"
- Next in thread: Charles Newman: "Re: Rhapsody"
- Reply: Charles Newman: "Re: Rhapsody"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
