Re: [Full-Disclosure] Blocking Music Sharing.

Mon, 15 Sep 2003 12:20:29 -0700 

That won't alwasy work.
I don't know enough about the inner workings of Limewire
and such but I know that AIM has a mechanism to go out over
any well known port such as 53 or 21...i'm sure the makers
of P2P have incorporated similiar features into their
designs.  

The only advice I can give is to monitor the traffic
utilizing Snort, create AUPs for employees, and take steps
against them if they violate it.  

Someone else out there may have a better idea, but if IM
can do it, i'm sure these programs can take any outbound
path they want...

Scott Renna
Symantec Managed Security Services



On Mon, 15 Sep 2003 13:42:03 -0400
 "Dimitri Limanovski" <[EMAIL PROTECTED]> wrote:
> 
> Just block ALL the traffic outbound and allow only
> necessary ports,
> like HTTP/S, FTP, SMTP, DNS etc. Requires more work on
> your end
> managing the firewall rules but a better practice and
> protection in
> the long run.
> 
> 
> Dimitri
> 
> 
> 
> |---------+-------------------------------------->
> |         |           "Johnson, Mark"            |
> |         |           <[EMAIL PROTECTED]>        |
> |         |           Sent by:                   |
> |         |           [EMAIL PROTECTED]|
> |         |           .netsys.com                |
> |         |                                      |
> |         |                                      |
> |         |           09/15/2003 12:37 PM        |
> |         |                                      |
> |---------+-------------------------------------->
>
  
>--------------------------------------------------------------------------------------------------------------|
>   |
>
                                                          
>                                                   |
>   |       To:       <[EMAIL PROTECTED]>
>
                                                          |
>   |       cc:
>
                                                          
>                                         |
>   |       Subject:  [Full-Disclosure] Blocking Music
> Sharing.
>                                                    |
>
  
>--------------------------------------------------------------------------------------------------------------|
> 
> 
> 
> Due to the legal issues, I am trying to block access to
> sites like
> Kazaa and Limewire in the office.  If I am not mistaken,
> these
> networks can use different ports each time, so there is
> no way to
> block it at the firewall.  Is this right?  And if so,
> what is the best
> way to block access to these types of sites?
> 
> Many thanks,
> Mark J.
> 
> 
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter:
> http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Reply via email to