Re: Using applications on server

  • From: "Joseph" <cismic@xxxxxxx>
  • To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
  • Date: Sat, 16 Mar 2002 12:54:29 -0800

Hello all,

File sharing programs.  I don't like all the hidden things that they
could install on your system.  There are so many out there now. Bear
shear, Limewire, and of course the daddy of them all napster.  

Not only do they buildup lots of log file data improperly configured
installing of these products open up the users system to potential
abuse.
For example if the system was setup at a root directory c:\ all the
documents in the root directory could be available for searching. And,
If I searched on *.doc or *.xls those files do appear for download.  Now
what happens if I get your credit card information or bank statements?
The first thing I guess would be user education.  But, it is the kids
that usually load that software and parents don't have a clue.

It's not necessarily the ports that I would worry about but more the key
strokes logged and what files were downloaded. Some of the new
installation programs install spy ware on the computers in use and
transmit that back to a host system.

Joseph

-----Original Message-----
From: Thomas W. Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx] 
Sent: Saturday, March 16, 2002 11:55 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Using applications on server

http://www.ISAserver.org


Hi Jim,

I can't say enough about how much I hate file sharing programs :-() Our
son came over to stay for a few days and decided that he wanted to use
Kaaza and Morpheus. Our Firewall and packet filter logs for our SOHO
usually run about 4-5 MBs/day.

I opened things up a bit so that he could use Kaaza and Morpheus, and
our firewall and packet filter logs for each of those days were over 40
MB!!! That was just one user. Can you imagine if you had a network of
users using that cr*p? It boggles the mind.

Thanks for listening :-)

Tom
www.isaserver.org/shinder


-----Original Message-----
From: Jim Harrison [mailto:jim@xxxxxxxxxxxx] 
Sent: Saturday, March 16, 2002 1:33 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Using applications on server

http://www.ISAserver.org


The first rule of firewalls is:
    Don't use them for anything else
If you can place your file sharing app inside the firewall, you'll be
much
happier and safer.
Applications running on the ISA need packet filters to access the
Internet
(unless they understand proxy settings).
Protocol rules allow internal hosts to get out, but don't have any
bearing
on apps running on the ISA itself.

Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://isaserver.org/authors/harrison/
Read the books!
----- Original Message -----
From: "Paul Duthie" <duthie.paul.j@xxxxxxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, March 14, 2002 7:50 PM
Subject: [isalist] Using applications on server


http://www.ISAserver.org


Hello Folks,

I'm wanting to run some file sharing apps on my ISA server (which is
connected to a cable modem) so that I can use my computer for other
things. However, none of them seem to be able to connect through the
firewall when they can connect through the firewall from the
workstations. Any ideas ?


--
Best regards,
Paul Duthie                     duthie.paul.j@xxxxxxxxxxxxxxxxxx
Network Manager,
Ballarat High School            www.ballaraths.vic.edu.au
Sent Using The Bat! Version 1.54 Beta/45


------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')



------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
cismic@xxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')



Other related posts: