[KLUG Members] choice of i-filter/firewall/squid box

Tony Gettig members@kalamazoolinux.org
Fri, 2 Apr 2004 14:56:11 -0500

Previous message: [KLUG Members] choice of i-filter/firewall/squid box
Next message: [KLUG Members] choice of i-filter/firewall/squid box
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Quoting Rusty Yonkers <therustycook@yahoo.com>:
...
> 
> I would challenge anyone to break that setup.  FTP would not work but
> I think that is a good thing for most schools.  And you can shutdown
> ActiveX through Dansguardian.  Messenger programs are a little bit
> harder since they will work with port 80.  I am not sure about Kazaa
> if that can use port 80 or not but have not had to block it or work
> with it either.  

I ran into something regarding this that I thought was pretty cool. With pattern
matching, you should be able to actually stop a lot of the messenger services.
This article is from 2001, when that functionality was apparently experimental.
Maybe it's more mature now?

http://www.securityfocus.com/infocus/1531

Dropping or logging packets with the string "kazaa-username:" might be
interesting in certain school environments. Packet capture a login sequence from
AIM, MSN, Yahoo, Limewire, etc. and you could drop or log that traffic by
matching the pattern. Again, I haven't tried this, but I saw it suggested on
another mailing list. Nifty.

Tony Gettig

Previous message: [KLUG Members] choice of i-filter/firewall/squid box
Next message: [KLUG Members] choice of i-filter/firewall/squid box
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]