Re: [fw-wiz] SANS Top Ten and Commercial Firewalls

• Previous message: Paul D. Robertson: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• In reply to: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Next in thread: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Reply: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 4 Oct 2002 arkat_private wrote:

> Sometimes. It is often prevented _before_ vulnerability is known if 
> the exploit breaks http protocol, otherwise you can block it with regexp.

Every time I've looked at the protocol spec, it's been a sieve- there 
aren't length definitions in most of the specification.  Could you provide 
some examples of things which break the protocol please?

Paul
-----------------------------------------------------------------------------
Paul D. Robertson      "My statements in this message are personal opinions
probertsat_private      which may have no basis whatsoever in fact."
probertsonat_private Director of Risk Assessment TruSecure Corporation

_______________________________________________
firewall-wizards mailing list
firewall-wizardsat_private
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Next message: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Previous message: Paul D. Robertson: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• In reply to: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Next in thread: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Reply: arkat_private: "Re: [fw-wiz] SANS Top Ten and Commercial Firewalls"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Oct 04 2002 - 07:42:22 PDT