On Mon, Apr 07, 2003 at 01:05:31PM +0200, [EMAIL PROTECTED] wrote: > how would you deal with blocking client side applications that masquerade > as other types of traffic? Such as clients that connect to remote hosts on > ports like 80, 22, 53, etc that your site allows out as legitimate traffic.
You'd need a firewall capable of analyzing protocols, ie. the fw needs to know what a typical SMTP session looks like. AFAIK this can not yet be done with gnu/linux tools. Robert
