Decent application level filters can block proxies such as socks
connections and HTTP tunneling software. The hardest ones are the ones
the use the "CONNECT" method which most SSL sites use in order to
function through web proxies.
That can be blocked by only allowing the CONNECT method on port 443 and
restricting SSL connections to required servers such as banks, airlines
or other approved sites by managers.
Michael
Jesus wrote:
> On Thu, 28 Apr 2005, david kuhlman wrote:
>
>
>>Why don't you just block connections to oscar.login.aol.com?
>>
>>That works for us.
>>
>>David Kuhlman
>
>
> Considering anyone can bypass blocks with a proxy, little you can do
> without digging into packet specifics, to block AIM traffic.
>
> -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> "The most tyrannical of governments are those which make
> crimes of opinions, for everyone has an inalienable
> right to his thoughts." -- Benedict Spinoza
>
>
> //sil
>
> http://www.kungfunix.net http://www.politrix.org
> http://www.infiltrated.net http://bush.shafted.us
>
Received on May 03 2005
Intro
