[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: secure webmail and firewall issues...

To: kos@bastard.net
Subject: Re: secure webmail and firewall issues...
From: Alex Hague <silicon_spider99@hotmail.com>
Date: Wed, 12 Jul 2000 15:50:30 NZST
Cc: firewalls@Lists.GNAC.NET

Kostas Evangelinos Wrote:
>IMHO, this will only work if the reverse proxy is transparent. The compared
>hased value includes the client ip address.

Yep, my mistake. You'd need to use Basic Authentication (clear text), but 
this would still be ok as it's encrypted by SSL when it's travelling over 
the internet.

Alex

From: Kostas Evangelinos <kos@bastard.net>
To: Alex Hague <silicon_spider99@hotmail.com>
CC: firewalls@Lists.GNAC.NET
Subject: Re: secure webmail and firewall issues...
Date: Tue, 11 Jul 2000 23:26:42 -0400

On Wed, Jul 12, 2000 at 11:21:51AM +1200, Alex Hague wrote:
| You don't need to authenticate to the reverse proxy as OWA will do all the
| authentication using NTLM. In the event that a buffer overflow 
vunerability
| exists in one of the OWA pages you will still need to be authenticated to
| execute the vunerability, thus only your users could execute it....

IMHO, this will only work if the reverse proxy is transparent. The compared
hased value includes the client ip address.

Later,
Kos

________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com

-
[To unsubscribe, send mail to majordomo@lists.gnac.net with
"unsubscribe firewalls" in the body of the message.]

Prev by Date: Re: weird (not queer) traffic
Next by Date: RE: ALERT!!! Virus warning!
Prev by thread: Re: secure webmail and firewall issues...
Next by thread: Re: secure webmail and firewall issues...
Index(es):
- Date
- Thread