Another OT Question - HTTP Mail Service
Willem Kossen
w.kossen at QUICKNET.NL
Sun Jul 11 17:26:48 IST 2004
----- Original Message -----
From: "Leif Neland" <mailscanner-user at NELAND.DK>
To: <MAILSCANNER at jiscmail.ac.uk>
Sent: Sunday, 11 July, 2004 3:04 PM
Subject: Re: [MAILSCANNER] Another OT Question - HTTP Mail Service
> > just a general reaction to this thread:
> > http-mail is just a non-standard way of circumventing firewalls by using
> the
> > usually allowed http protocol to transfer mail information.
>
> Just another OT reaction to this thread:
>
> Actually, if the user has access to a friently machine outside the
firewall,
> perhaps his own machine at home, there exists a http-tunnel-proxy, where
you
> can tunnel almost anything http-requests.
>
> This just shows that firewalls can not keep users in who _wants_ to get
out.
> Unless you can just fire anyone who breaks the rules, as sysadm your best
> option is to work with your users to get what they need safely instead of
> trying to fight the users.
>
> Otherwise you might find unauthorized modems answering calls,
circumventing
> any firewall you have set up...
>
I know, i use this myself if needed... tunneling over a https cgi program...
you could use different covert channels for this to work. there is no such
thing as absolute security. i know.
nevertheless, normal users don't understand this at all!
Willem
> Leif
>
> -------------------------- MailScanner list ----------------------
> To leave, send leave mailscanner to jiscmail at jiscmail.ac.uk
> Before posting, please see the Most Asked Questions at
> http://www.mailscanner.biz/maq/ and the archives at
> http://www.jiscmail.ac.uk/lists/mailscanner.html
-------------------------- MailScanner list ----------------------
To leave, send leave mailscanner to jiscmail at jiscmail.ac.uk
Before posting, please see the Most Asked Questions at
http://www.mailscanner.biz/maq/ and the archives at
http://www.jiscmail.ac.uk/lists/mailscanner.html
More information about the MailScanner
mailing list