[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] SMTP Telnet

To: henry.wat@Sema.com.hk
Subject: Re: [FW1] SMTP Telnet
From: Martin Zemljic <Martin.Zemljic@astec.si>
Date: 09 Nov 1999 14:41:49 +0100
Cc: fw-1-mailinglist@lists.us.checkpoint.com







 This has been discussed few months ago.

 Resume:
 You can not, if someone uses line-mode telnet (such as Cisco router can
 produce),

 If you use "ordinary" telnets, you can test the packet length and/or
 telnet-specific control codes that do not appear in pop3/smtp session. However,
 you CANNOT guess whether someone uses telnet:25 or smtp/pop3 client, especially
 if he/she uses line mode telnet. Reason: Sessions are pretty equal down to
 packet level. Plus, anyone with development tool can write his own smtp/pop3
 client.

 For testing packet length (single character per packet) and control codes you
 have to modify base.def file. Please look into archives of this mailing list,
 as far as I remember, final solution was not published.

 Martin

 PS: And why they should not do this?




 To:   fw-1-mailinglist@lists.us.checkpoint.com AT
       PO_INT@PO_SIGOV@PO_ASTEC@CCMAIL
 cc:    (bcc: Martin Zemljic/ASTEC)
 Subject:  [FW1] SMTP Telnet



    [ Part 2: "Attached Text" ]



I was being ask by my manager, to see the possibility of blocking telnet
session (i.e. using a telnet software and specific port 25 or 110) into a
SMTP/POP3 server, any suggestion will be greatly appreciated.

Regards

HenryW


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: Re: [FW1] firebox
Next by Date: RE: [FW1] SecuRemote 4.1 & VPN-1 4.0
Prev by thread: Re: [FW1] SMTP Telnet
Next by thread: Re: [FW1] SMTP Telnet
Index(es):
- Date
- Thread