Re: Kids bypassing firewall via web proxy sites

Sebastian Gottschalk wrote:
> E. wrote:
>
>
>>Such a transfer would require intersite communications to be already
>>established.
>>Would it work if google.de/%targetsite was blocked?
> About any non-blocked website can be abused this way. That's why I
> stated nytimes.com.
If it knew what to do with the request.

>>How would you
>>establish communications to a blocked site when proxies are also blocked?
>
>
> DNS

So you can resolve the IP using a UDP packet. How do you propose to get
a two-way connection going using a UDP53, and browsing myspace using this?

>>Would standard clientside computer policy allow the user access to
>>use/install the tools needed to do this?
>
> That's the point: Modern policies can prohibit _running_ such tools, at
> least to a certain level. Not so reliable, but pretty effective.
>
> That's why downloading such utilities being possible, besides
> circumventing the policies, is no big problem.

As already stated, all downloads being blocked. Sending a UDP packet
does no equal a downloaded utility.
>
> Anyway, it also requires you to not run any malware^wcommercial software
> that employs certain ways of scripting without any or any working
> policies. And I guess many companies are running MS Office. At this
> point you've already lost.

More allusion, and no proof.
E.
Received on Mon May 1 00:59:45 2006