Bennett Todd wrote:
> [big snip] application proxies
> that strip active content.
This isn't particularily in response to Bennett's post, but I
thought I ought to mention it anyway.
There are a lot of firewalls that claim abilities in stripping
active content such as javascript.
Well, one thing we should have learned from the recent Web-based
E-mail filtering failures (Hotmail has received most coverage,
but the same problems apply to all of them), is that it is near
impossible for a firewall to filter active content. There's always
some new way of injecting scripts in an HTML document.
So, in light of that, I think that all network filters, be it
SPFs or proxies, should be considered to have no protection
against embedded active content.
$.02
<flame shield up>
/Mike
--
Mikael Olsson, EnterNet Sweden AB, Box 393, SE-891 28 �RNSK�LDSVIK
Phone: +46-(0)660-29 92 00 Fax: +46-(0)660-122 50
Mobile: +46-(0)70-66 77 636
WWW: http://www.enternet.se E-mail: [EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
