Re: Most Popular Hardware Firewalls?
- From: Sebastian Gottschalk <seppi@xxxxxxxxx>
- Date: Tue, 28 Feb 2006 20:15:43 +0100
snertking wrote:
Yeah, it's breaking everything. And pretty soon the users allows this or
that, or if something doesn't work he disables it temporarily. Pretty
unavoidable with such crappy default settings. And as long as IE, OE, MS
Office, MSN Messenger, mIRC or other crap is allowed, you'll get the
malware anyway.
Not true with a decent firewall that does IPS.
Most IPSs are crap, besides they offer wonderful possibilities of Self-DoS.
So, blocking all JavaScript, CSS, all Links containing "ftp:", Objects
and (I)Frames?
No. Siganture based detection. Blockeing PARTICULAR javascript exploits,
etc.
Ever heard something named "encoding"? Just
eval(unescape($escape-encoded exploit)) is usually sufficient to
circumvent it, and this is comparably simple to the real exploits out there.
.
- References:
- Most Popular Hardware Firewalls?
- From: galt_57
- Re: Most Popular Hardware Firewalls?
- From: galt_57
- Re: Most Popular Hardware Firewalls?
- From: galt_57
- Re: Most Popular Hardware Firewalls?
- From: TechGrrl
- Re: Most Popular Hardware Firewalls?
- From: Sebastian Gottschalk
- Re: Most Popular Hardware Firewalls?
- From: Sebastian Gottschalk
- Re: Most Popular Hardware Firewalls?
- From: Sebastian Gottschalk
- Re: Most Popular Hardware Firewalls?
- From: snertking
- Most Popular Hardware Firewalls?
- Prev by Date: Re: Reliability of Networking Hardware?
- Next by Date: Re: Most Popular Hardware Firewalls?
- Previous by thread: Re: Most Popular Hardware Firewalls?
- Next by thread: Re: Most Popular Hardware Firewalls?
- Index(es):
Relevant Pages
|
