Re: Virus/trojan tunnel out from behind firewall?

From: Ryan Russell (ryanat_private)
Date: Mon Feb 25 2002 - 01:01:28 PST

Next message: Christopher X. Candreva: "Re: Solaris hack"

Previous message: Rich Puhek: "Re: Virus/trojan tunnel out from behind firewall?"
In reply to: David Carmean: "Virus/trojan tunnel out from behind firewall?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 24 Feb 2002, David Carmean wrote:

> Have there been any cases of a trojan/virus/etc tunnelling out from
> behind a firewall and thus providing an attacker a way into the
> "chewy center"?

Sure.  All of the trojans that log onto IRC and await commands do that.
Others that download components from a website under the authors control
do that in a way, as well.

						Ryan

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Christopher X. Candreva: "Re: Solaris hack"
Previous message: Rich Puhek: "Re: Virus/trojan tunnel out from behind firewall?"
In reply to: David Carmean: "Virus/trojan tunnel out from behind firewall?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Feb 25 2002 - 15:23:31 PST