Stopping tunnels over HTTP can only be done by blacklisting the
gateways. Both the quoted products use a small set of gateway servers
all requests are tunneled to so making a blacklist for these two should
not be a problem.
To block the advanced HTTP tunnellerer that runs his own gateways you
need to perform some access log statistics to identify the precense and
endpoints of the tunnel.
The unarguably best method is to have a strong policy of use agreement
with yout users and punish abusers with suitable punishments according
to your policy.
Regards
Henrik
Didi Rieder wrote:
>
> Hello,
>
> is there a way to stop the abuse of a squid proxy as a http tunnel?
>
> - http://http-tunnel.com
> - http://www.networkingfiles.com/Firewalls/socks2http.htm
>
> Didi
>
> --
> -------------------------
> Didi Rieder
> adrieder@sbox.tugraz.at
> -------------------------
Received on Mon Jun 24 2002 - 16:55:18 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:47 MST