Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Protecting publicly reacheable servers (e.g. HTTP)?

From: "Emmanuel Adeline" <ead () free fr>
Date: Sun, 25 Nov 2001 20:46:39 +0100
Have a look at http://www.denyall.com/en/solsecu/rweb/
It filters URLs (including arguments and data) and HTTP headers.

--
Emmanuel,
rWeb happy user.

----- Original Message -----
From: <ark () eltex ru>
To: "Patrick M. Hausen" <hausen () punkt de>
Cc: <firewall-wizards () nfr com>
Sent: Saturday, November 24, 2001 1:00 PM
Subject: Re: [fw-wiz] Protecting publicly reacheable servers (e.g. HTTP)?



nuqneH,

I am still trying to figure out how to prevent data-driven attacks
on proxy level.

I have a quite good set of application proxies that do stop

protocol-driven

attacks like lpd or pop3 exploits so it adds some extra protection to
those servers but that does not work for http, where all attacks (or

nearly so)

do fit the protocol. Some extra heuristics are required - do you people

have

any ideas and suggestions?


[snip]


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: