Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Re: Bybass HTTP ( extension files ) in ISA 2004

Re: Bybass HTTP ( extension files ) in ISA 2004

From: <medozero_at_yahoo.com>
Date: 16 Jul 2006 10:50:41 -0000

('binary' encoding is not supported, stored as-is) well for those who didnot get it it is like this
make a rule in ISA and in the role make the source is internal network and the destination is external now configure the HTTP policy to block specific extension like zip ok now test it try to download any file.zip y0 will have that ISA will prevent y0 from downloading it > now try to add # to the end of the file like file.zip# and see what will happen . If y0 have any comment on this plz reply . and for some ppl who think this is a scripkeddies thing it is not as it is a bug as i see it .
Received on Jul 18 2006

This message: [ Message body ]
Next message: medozero_at_yahoo.com: "Re: Bybass HTTP ( extension files ) in ISA 2004"
Previous message: Moritz Muehlenhoff: "[SECURITY] [DSA 1113-1] New zope2.7 packages fix information disclosure"
Maybe in reply to: medozero_at_yahoo.com: "Bybass HTTP ( extension files ) in ISA 2004"
Next in thread: Thor (Hammer of God): "Re: Bybass HTTP ( extension files ) in ISA 2004"
Reply: Thor (Hammer of God): "Re: Bybass HTTP ( extension files ) in ISA 2004"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]