Protection against http tunneling (was: HTTP tunnel with linux server and windows client)
On Mar 03 2003, Martynas Domarkas wrote:
> Try this: http://www.htthost.com/ , but use it on your own risk. It is a
> real security hole. Better is to ask system administrator open some
> rules on firewall for you.
These kind of programs, if I read well we have at least corkscrew and
httptunnel that should to a bit of the same that this htthost does, are
really a big problem if you think you have your network protected because
the only way out of the net is a http/https proxy. Once someone puts a piece
of code like these or any other (maybe a virus, trojan, ...) he can gain
access to your hole network via that proxy.
The question is... is there any way to protect against this? I mean, how
would you differenciate on for example, a squid, the traffic of one of this
tunnels from the real traffic you want to allow?
Any ideas?
Regards...
--
Manty/BestiaTester -> http://manty.net
Reply to: