Great Circle Associates Firewalls
(July 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: Re: Virus Scanner
From: Paul Ferguson <pferguso @ cisco . com>
Date: Mon, 28 Jul 1997 11:39:37 -0400
To: Russ <Russ . Cooper @ RC . on . ca>
Cc: "Firewalls @ GreatCircle . COM" <firewalls @ GreatCircle . COM>, "'Jerry Huyghe'" <jerry @ eliashim . com>, mccrebsi @ ina . de
In-reply-to: <B1A2E88F5F7FD011A0B40000E8D5C66712BFCA @ mail . rc . on . ca> 
Good point.  :-)

And not to mention traditional IP GRE and IP-in-IP tunnels (DVMRP).

- paul

At 11:04 AM 07/28/97 -0400, Russ wrote:

>As the use of encrypted channels (mail/ssl/vpn) become more prevalent,
>aren't Firewall-based virus scanners becoming less effective? Assuming
>that a Firewall-based virus scanner is going to protect you assumes it
>can see everything as it really appears, not always the case. Altavista
>Tunnel decapsulates beyond the Firewall, S/MIME and PGP don't make
>contents visible until read by the client, and SSL extends all the way
>to the client also. IPSEC-based tunnels would be similar.
>
>Cheers,
>Russ
>R.C. Consulting, Inc. - NT/Internet Security
>owner of the NTBugTraq mailing list:
>http://ntbugtraq.rc.on.ca/index.html
>


--
Paul Ferguson                                           ||        ||
Consulting Engineering                                  ||        ||
Herndon, Virginia   USA                                ||||      ||||
tel: +1.703.397.5938                               ..:||||||:..:||||||:..
e-mail: pferguso @
 cisco .
 com                         c i s c o S y s t e m s
References:
Indexed By Date Previous: RE: Re: Virus Scanner
From: Jerry Huyghe <jerry @ eliashim . com>
Next: New mailing list (security-jobs)
From: Alfred Huger <huger @ silence . secnet . com>
Indexed By Thread Previous: RE: Re: Virus Scanner
From: Russ <Russ . Cooper @ RC . on . ca>
Next: RE: Re: Virus Scanner
From: "Paul D. Robertson" <proberts @ clark . net>
Google
 
Search Internet Search www.greatcircle.com