Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Skype & IPS vendor claims

from [Rong-Tai Liu] Network Security [Permanent Link]
Subject: RE: Skype & IPS vendor claims
Date: Mon, 5 Jun 2006 15:08:03 +0800 
BroadWeb's IPS is able to block Skype entirely and control its service
(voice, video, file transfer, chat) seperately in the same time. 

Our customers tend to use our IPS to block the "file transfer" function of
skype, and still allow the voice communication. They don't want virus/worms
get into the internal netwokrs through the "file transfer" path of IM
applications and Skype, but they also like their employee to use the VoIP
function to cut the cost.

BroadWeb uses mainly behavior analysis and few signatures to identify Skype
and its features. Currently we support up to Skype version 2.0.1.107 (seems
to be the latest one).

Best Regards,
 
Terence R.T. Liu, Ph.D.
-----------------------------------------
R&D Division
BroadWeb Corporation
E-mail: tie@broadweb.com.tw
Web Site: http://www.broadweb.com



-----Original Message-----
From: Basgen, Brian [mailto:bbasgen@pima.edu]
Sent: Thursday, May 25, 2006 6:03 AM
To: focus-ids@securityfocus.com
Subject: RE: Skype & IPS vendor claims

Dan,

 I think the relevant snippet of the ULA is: "Skype Software may utilize the
processor and bandwidth of the computer (or other applicable device) you are
utilizing, for the limited purpose of facilitating the communication between
Skype Software users."

 In other words, they may use your computer and bandwidth to help other
people communicate. This is part of what makes Skype both a good and bad
product: its Peer to Peer nature. Instead of having a central server that
routes traffic, peers on the network do that work. 

 Hence, for users with a fat pipe to the internet, they may want to think
twice about giving Skype the okay to use as much of that pipe as they need.
Home users likely won't and don't need to care, and frankly a lot of
organizations are okay with this kind of thing, if for no other reason than
the impact is possibly minimal. If your organization, however, wants to know
and control internet data flows, then peer to peer technology is going to
make your job very difficult.

~~~~~~~~~~~~~~~~~~
Brian Basgen
IT Systems Architect, Security
Pima Community College
 


------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • RE: Skype & IPS vendor claims, Rong-Tai Liu <=
Previous by Date:  BASE 1.2.5 (sarah) released, Kevin Johnson
Next by Date:  Re: fusion of results from heterogeneous sensors, Jean-Philippe Luiggi
Previous by Thread:  BASE 1.2.5 (sarah) released, Kevin Johnson
Next by Thread:  Re: fusion of results from heterogeneous sensors, Jean-Philippe Luiggi
Indexes:  [Date] [Thread] [Top] [All Lists]