|
General software and network General OS-independent software and network questions, X11, MTA, routing, etc. |
|
Thread Tools | Display Modes |
|
|
||||
I would really like to post the link to that Squid+SslBump but since I've less than 5 posts, the forum rules won't allow me to post links.
Wondering if this post could be mirrored on the FreeBSD / NetBSD security forum areas. Hopefully an Administrator can comment. |
|
|||
Quote:
Although we have automated the five post limit as a spam preventative, Administrators watch most posts of newcomers, & will silently enable link activation if it is clear that the poster has community-oriented intentions. Your account has already been modified. We recognize that instituting this five post limit can be annoying for newcomers, but it is lifted after the fifth post. Spam has been a significant problem on vBulletin-based form sites, & this is the less than optimal solution we have settled upon. Quote:
Quote:
|
|
|||
Quote:
|
|
||||
Hello, and welcome!
I know little of tools like SSLBump. I understand the desire to control one's own systems, but deploying an intentional MITM attack against SSL as some sort of IDS seems like squashing a bug with an RPG. We are, of course, discussing a rootkit of the future. And with a compromised system you've got many more worries than just choking off one C&C access path. I wonder if Snort or another IDS can detect this type of usage. I don't use 'em any more, myself, as they seem to have way too many useless false positives. Last edited by jggimi; 15th July 2013 at 04:44 PM. Reason: typo, clarity |
|
||||
Snort is deployed where I work. It takes a lot of additional glue and duct tape in order for it to function cleanly.
Under my alias ejr2122, I was just saying on the FreeBSD Forums: Quote:
While IRC like many protocols can be caught by IDS analysis, SSL encrypted traffic is difficult. SSH through port 80 seemed like the most common-place example of SSL traffic network admins might want to catch. |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
prevent root ssh access | carpman | FreeBSD Security | 7 | 18th December 2009 04:24 PM |
SSH tunneling vs. OpenVPN | revzalot | OpenBSD Security | 8 | 31st May 2009 06:45 AM |
Prevent users from using proxy | bichumo | General software and network | 8 | 20th April 2009 01:00 PM |
SSH on port 443 | maxrussell | General software and network | 4 | 6th April 2009 05:16 AM |
Songbird port | maxrussell | FreeBSD Ports and Packages | 1 | 2nd March 2009 10:47 AM |