Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security SecProg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: php - inject code into $_SERVER ?

from [Dave Hull] Network Security [Permanent Link]
Subject: Re: php - inject code into $_SERVER ?
Date: Mon, 7 Feb 2005 13:10:22 -0600 
We have developed a solution that hopefully will be open sourced in
the next few months. In a nutshell, we have a DHCP server that assigns
non-routable (10.10.x.x) IP addresses to unknown hosts on the network.
These hosts are redirected to a local authentication server via a
simple DNS hack that redirects all requests to a host of our choosing.

Once users have downloaded an application to their local machine and
we have verified they are fully patched and are pulling updates for
both OS and anti-virus software, we assign them a routable IP for our
primary network and they are free to go whereever they want.

There are some problems that we have solutions for, but are still
implementing, like what to do for people who hard-code a routable IP
address on their machines, etc.

I'm sure our solution is not novel, I've seen captive portals in
coffee shops that provide the same functionality.

On Mon, 07 Feb 2005 12:28:37 +0100, Ole Martin Eide <ole@emag.no> wrote:

Dave Hull wrote:


Could you use the DHCPLEASEQUERY option for this?

http://www.ietf.org/internet-drafts/draft-ietf-dhc-leasequery-07.txt




Has anyone made a solution for LAN/WAN where user has to login through
web to gain access to the rest of the network? E.g. iptables drops
everything till successfull login has been made? Could someone give me
some pointers on it?

Regards
Ole Martin Eide




-- 
Dave Hull
ireadit@gmail.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: php - inject code into $_SERVER ?, Kevin Conaway
Next by Date:  Re: secure storage of sensitive data in J2EE, Kevin Conaway
Previous by Thread:  Re: php - inject code into $_SERVER ?, Kevin Conaway
Next by Thread:  Re: php - inject code into $_SERVER ?, Ole Martin Eide
Indexes:  [Date] [Thread] [Top] [All Lists]