|
|
|
https proxy tunnels are a nightmare for any security officer
|
https is a necessary protocol
https is a protocol that implements a strong encryption layer
around the http protocol.
Data that is sent across the internet using the https protocol is secured and
cannot be decrypted by any eavesdropper.
Therefore, https is a great protocol for financial transactions and many other
applications where privacy is desired.
The https protocol is also a security risk because of its nature to encrypt all
data that is sent between a client and a web server.
This implies that antivirus software cannot intercept virusses at the gateway of a protected network,
and also so-called tunnels with unlimited transfer of data and documents
can be created easily between a PC on a protected network and any system on the internet.
Go to Google
and type "proxy tunnel".
It does not take long to understand that setting up a communication
channel between a PC and a home system or any (insecure) system on the internet is
very easy and that most web proxies allow it
(e.g. Squid, Netcache, iPlanet, etc.)
These so-called proxy tunnels can also be used with
reverse port forwarding
(using ssh)
which means that from any system on the internet
an unauthorised connection can be made into the protected network.
It also does not matter how good the firewall is!
A security risk exists as long as https is allowed while
there is no countermeasure against proxy tunnels.
Protect your network against proxy tunnels !
ufdbGuard has a unique feature to dynamically detect
proxy tunnels.
If ufdbGuard is configured to detect proxy tunnels,
each website using https is checked for the existence of
tunneling protocols and access is blocked when a
tunnel is found.
Tunneling protocols like SSH, httptunnel, Barracuda and others are detected
and access to websites with tunnels can be blocked.
|
|
|
|
|
|
© copyright 2004-2008 URLfilterDB. All rights reserved.
|
OnToplist.com ranking: internet
the date is approximately Sunday, 07-Sep-2008 21:23:24 CEST
|
