Re: Newsgroup filtering with host server software

Chilly8 wrote:

X-No-Archive: Yes

"Sebastian G." <seppi@xxxxxxxxx> wrote in message news:5tlbksF1e7fi0U1@xxxxxxxxxxxxxxxx
Chilly8 wrote:


and her employer in Canada had no CLUE as
to what she was up to.

I'm sorry to tell you that he most likely was. Due to man-in-the-middle, going undetected due to an installed certificate (by administration).

Not with the proprietary non-standard encryption that proxy uses
(which is why it is so expensive to licence for large numbers of
users).


If it's not HTTPS, then it's terminated at the proxy and no communication takes places.

This is a proprietary encrypted proxy that is made in
Eastern Europe. It uses a non-standard algorithm that no
man-in-the-middle attack could POSSIBLY intercept.


Nonsense.

Employers, countries, and the like, can try all the MOTM attacks

> I want, but the proxy solution that *I* use is IMPERVIOUS to
> such attacks,

Even more nonsense. It's trivial to terminate all non-proxied connections at the proxy. Or, and it's trivially to launch a MITM attack directly at the client.

so that was no POSSIBLY way for this woman's employer to
detect what she was up to.


And even more nonsense. Since it's the companies computer, they're free to monitor the client to any extend.

> This is a proprietary encryption algorith

that cannot be intercepted by any MOTM attack.


Repeating your nonsense doesn't make it any less wrong.
.

Relevant Pages

  • [NT] Multiple Vulnerabilities in Mirabilis ICQ Client
    ... The ICQ client offers other client services, ... This vulnerability can be successfully exploited by an attacker ... ICQ Features on Demand spoofing attack: ...
    (Securiteam)
  • Re: WPA-PSK audit
    ... There is one point to add to what you said, and is that once the attacker gets the authentication frames between the client and the AP the brute force attack is done off-line... ... The time it takes to crack the psk (if you do have ... SSID you are auditing is not in the top 1000 ssids from wiggle anyways ...
    (Pen-Test)
  • Re: How to Hide the IIS FTP Banner ?
    ... > before starting their attack. ... >>vulnerable server in the first place so it wouldn't make any ... > know, until a vulnerability is discovered and announced, that your server ... You'd have to ask the client authors about that, ...
    (microsoft.public.inetserver.iis.ftp)
  • Re: [Full-disclosure] OpenID/Debian PRNG/DNS Cache poisoning advisory
    ... Note that shutting down the site DOES NOT prevent the attack. ... Isn't this a good argument for blacklisting the keys on the client ... to accept any certificate containing one of them. ... without blowing out the size of a browser. ...
    (Full-Disclosure)
  • Re: OpenID/Debian PRNG/DNS Cache poisoning advisory
    ... Note that shutting down the site DOES NOT prevent the attack. ... Isn't this a good argument for blacklisting the keys on the client ... to accept any certificate containing one of them. ... This has side effects but perhaps they can be made statistically very unlikely, without blowing out the size of a browser. ...
    (Bugtraq)