Re: Port numbers???
From: Jose Maria Lopez Hernandez (jkerouac_at_bgsec.com)
Date: 09/01/04
- Next message: Jhill: "Re: Sonicwall Answering ARP requests"
- Previous message: Jose Maria Lopez Hernandez: "Re: Snort IDS"
- In reply to: Lars M. Hansen: "Re: Port numbers???"
- Next in thread: Jose Maria Lopez Hernandez: "Re: Port numbers???"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 01 Sep 2004 18:24:24 +0200
Lars M. Hansen wrote:
> On Wed, 01 Sep 2004 00:41:58 +0200, Jose Maria Lopez Hernandez spoketh
>
>
>>But if it can use port 80 then it's almost impossible to block it with
>>the firewall. Maybe an IPS as snort-inline can do the job.
>
>
> Depends. If you have a firewall that uses application proxies, then the
> firewall may block anything on port 80 that isn't legitimate http
> traffic.
>
That's a very good solutions. Do you know of a good application proxy
for Linux? I have fwtk and Trex, and I have written a message to some
groups to see if someone can compile Trex completely without errors,
because I couldn't, but no one responds to my question.
>
> Lars M. Hansen
> http://www.hansenonline.net
> (replace 'badnews' with 'news' in e-mail address)
-- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac@bgsec.com bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAŅA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road"
- Next message: Jhill: "Re: Sonicwall Answering ARP requests"
- Previous message: Jose Maria Lopez Hernandez: "Re: Snort IDS"
- In reply to: Lars M. Hansen: "Re: Port numbers???"
- Next in thread: Jose Maria Lopez Hernandez: "Re: Port numbers???"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
