my mail system says that mark @
internetstartup .
com said:
>I believe that Java RMI will be overloading RMI on port 80. How does
>that make all of the firewall owners feel? "Tunneling" is probably
>the right word to use.
>So file uploads (See Also RFC 1867 "Form-based File Upload") aren't
>our only worries.
>
>How is the firewall supposed to control what is really being sent
>over http?
>This disempowerment of the firewall is most troubling.
>
>Mark Riggins
>
(original problem solved but......) Mark I would tend to agree with
you here. From what I have seen at a design level (not the code
level) of both Eagle and Sidewinder I am impressed with the detailed
look at the SMTP packets (search for buffer overflow?) over other
proxies however, I think that screening http traffic may be like
attempting to make the perfect 'hardened' UNIX kernel all over again.
Would you ever be satisfied that all of the 'evil' in the world was
removed?
Dan Salenger
Deloitte & Touche LLP
Follow-Ups:
|
|
