Re: Using applications on server
- From: "Thomas W. Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Sat, 16 Mar 2002 15:20:36 -0600
Hi Joseph,
This is a very big issue for those that run "Family Area Networks"
(FANs), especially the fact that they kids install this stuff and the
parents have no ideas what's going on. Unfortunately, I belong to that
group right now, because I'm not well versed on exactly how these
Scumware products work. I assume that all those dropped packets on my
external interface are due to other Kaaza and Morpheus users attempting
to create new (non-ACK) connections to my external interface because the
file sharing program has shared the contents of a particular folder on
the user's hard disk? You would have to open are particular port or
ports by creating a server publishing rules for external users to create
a new connection, wouldn't you?
The Spyware, virus and Trojan issue is a big one too. Kids aren't too
security minded because they think the world is a pretty bright and
cheery place :-). It's good for kids to think that way because they
should enjoy being kids before becoming neurotic later in life.
BTW -- do you know if there are any good resources that give the details
on how these app's work?
Thanks!
Tom
-----Original Message-----
From: Joseph [mailto:cismic@xxxxxxx]
Sent: Saturday, March 16, 2002 2:54 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Using applications on server
http://www.ISAserver.org
Hello all,
File sharing programs. I don't like all the hidden things that they
could install on your system. There are so many out there now. Bear
shear, Limewire, and of course the daddy of them all napster.
Not only do they buildup lots of log file data improperly configured
installing of these products open up the users system to potential
abuse.
For example if the system was setup at a root directory c:\ all the
documents in the root directory could be available for searching. And,
If I searched on *.doc or *.xls those files do appear for download. Now
what happens if I get your credit card information or bank statements?
The first thing I guess would be user education. But, it is the kids
that usually load that software and parents don't have a clue.
It's not necessarily the ports that I would worry about but more the key
strokes logged and what files were downloaded. Some of the new
installation programs install spy ware on the computers in use and
transmit that back to a host system.
Joseph
-----Original Message-----
From: Thomas W. Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx]
Sent: Saturday, March 16, 2002 11:55 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Using applications on server
http://www.ISAserver.org
Hi Jim,
I can't say enough about how much I hate file sharing programs :-() Our
son came over to stay for a few days and decided that he wanted to use
Kaaza and Morpheus. Our Firewall and packet filter logs for our SOHO
usually run about 4-5 MBs/day.
I opened things up a bit so that he could use Kaaza and Morpheus, and
our firewall and packet filter logs for each of those days were over 40
MB!!! That was just one user. Can you imagine if you had a network of
users using that cr*p? It boggles the mind.
Thanks for listening :-)
Tom
www.isaserver.org/shinder
-----Original Message-----
From: Jim Harrison [mailto:jim@xxxxxxxxxxxx]
Sent: Saturday, March 16, 2002 1:33 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Using applications on server
http://www.ISAserver.org
The first rule of firewalls is:
Don't use them for anything else
If you can place your file sharing app inside the firewall, you'll be
much
happier and safer.
Applications running on the ISA need packet filters to access the
Internet
(unless they understand proxy settings).
Protocol rules allow internal hosts to get out, but don't have any
bearing
on apps running on the ISA itself.
Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://isaserver.org/authors/harrison/
Read the books!
----- Original Message -----
From: "Paul Duthie" <duthie.paul.j@xxxxxxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, March 14, 2002 7:50 PM
Subject: [isalist] Using applications on server
http://www.ISAserver.org
Hello Folks,
I'm wanting to run some file sharing apps on my ISA server (which is
connected to a cable modem) so that I can use my computer for other
things. However, none of them seem to be able to connect through the
firewall when they can connect through the firewall from the
workstations. Any ideas ?
--
Best regards,
Paul Duthie duthie.paul.j@xxxxxxxxxxxxxxxxxx
Network Manager,
Ballarat High School www.ballaraths.vic.edu.au
Sent Using The Bat! Version 1.54 Beta/45
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
cismic@xxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
