[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Protection against http tunneling (was: HTTP tunnel with linux server and windows client)



On Mar 03 2003, Martynas Domarkas wrote:
> Try this: http://www.htthost.com/ , but use it on your own risk. It is a
> real security hole. Better is to ask system administrator open some
> rules on firewall for you.

These kind of programs, if I read well we have at least corkscrew and
httptunnel that should to a bit of the same that this htthost does, are
really a big problem if you think you have your network protected because
the only way out of the net is a http/https proxy. Once someone puts a piece
of code like these or any other (maybe a virus, trojan, ...) he can gain
access to your hole network via that proxy.

The question is... is there any way to protect against this? I mean, how
would you differenciate on for example, a squid, the traffic of one of this
tunnels from the real traffic you want to allow?

Any ideas?

Regards...
-- 
Manty/BestiaTester -> http://manty.net



Reply to: