Re: Bypassing proxies

To: <debian-security@lists.debian.org>
Subject: Re: Bypassing proxies
From: "Andrew Pritchard" <andrew@teppic.co.uk>
Date: Tue, 19 Nov 2002 15:00:17 -0000
Message-id: <[🔎] 002501c28fdc$71e49ca0$0a00a8c0@teppic.co.uk>
References: <[🔎] 51341B7FA34CD2119FA20008C7289B1C051C1AF9@panoramix.coe.int> <[🔎] 20021119142953.GA30129@zionlth.org>

> > Wondering if some people know of some "content-aware" proxies/filters,
to
> > attempt to block [some of] those dangerous products (apart from
maintaining
> > a black-list...)
> If you allow out FTP I will be able to start an SSH connection over port
> 20 (FTP-Data) and it will look like a binary data transmission on any
> network sniff.  In reality I am forwarding a local port to a remote
> squid proxy and instructing IE, Netscape or the browser of choice
> to proxy through the local port.  Finding a solution to block something
> like this (similiar to what you mentioned above) may be difficult...
>
> If you find something, please let me know...
>

I've bypassed proxies before (check out DESPROXY on freshmeat).

One possible way to deal with it is to require an authentication method that
the bypass doesn't understand.

A

Reply to:

References:
- Bypassing proxies
  - From: DEFFONTAINES Vincent <Vincent.DEFFONTAINES@coe.int>
- Re: Bypassing proxies
  - From: Phillip Hofmeister <plhofmei@zionlth.org>

Prev by Date: RE: Bypassing proxies
Next by Date: [no subject]
Previous by thread: Re: Bypassing proxies
Next by thread: Re: Bypassing proxies
Index(es):
- Date
- Thread