RE: [FW1] disable ICQ

Wed, 04 Jul 2001 03:54:53 -0700

The best one I've heard yet is a bit of a hack, but it's effective.  Each IM service (AIM, ICQ, etc.) will typically attach to a central host to identify the client ID and receive updates for their buddy list.  Instead of blocking a moving target (the dest port in this case), put an entry in the host file of your site's DNS server for the messaging server in question.  The entry should look like this:
 
127.0.0.1    login.oscar.aol.com (or whatever the messaging server's name is)
 
This way, when the messaging client goes to attach to the central server, it instead gets routed right back to itself.  It's maddening for your users and effective for you.  You just need to document and remember that you have mucked up your host file, in case you need to make changes at a later date.
 
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 29, 2001 5:35 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [FW1] disable ICQ

new ICQ comes with dynamic config. You can try every port & IP possibility of program and close that destinations. This is the first idea for solution.. But you may have many of rules just for disabling ICQ. I suggest give permission for icq and dont care anything. Just control other security points for disabling ICQ,  for ex block  installation of ICQ. yo can control this point from any of PC management SW like SMS, Tivoli, Spectrum etc.
 
______________________________________
Serhat ERKAN

Professional Services
KocSistem Bilgi ve Iletisim Sistemleri A.S.
Tel:  +90 (216) 556 1325
Fax: +90 (216) 556 1188
[EMAIL PROTECTED]
______________________________________


 
-----Original Message-----
From: Hans Schimek [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 28, 2001 9:43 PM
To: Fw-1-Mailinglist
Subject: [FW1] disable ICQ

Hi!
 
Can anyone give me a good advice how to diable ICQ on a checkpoint FW.
(ruleset please)
 
 
thx
Hans

***

The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail, delete this e-mail, and refrain from any disclosure or action based on the information.

****

Reply via email to