just to add a comment.
while the http proxy of the Gauntlet may block javascript, activex and
other stuff, the smtp proxy won't. And since many mail user agents have the
capabilities of web browsers, sending web pages with active content
by email is still possible (unless smtp proxies are fixed to handle this).
That said, I'm not completely ok with your args. while there will always
be new ways to add new tags, it will always be possible to add fixes
to the proxies to handle this. There are certainly some limitations, but
the situation is quite better than with packet filters. and better is
better.
$.001 (available in euros only)
Mikael Olsson wrote
> ...
> Well, one thing we should have learned from the recent Web-based
> E-mail filtering failures (Hotmail has received most coverage,
> but the same problems apply to all of them), is that it is near
> impossible for a firewall to filter active content. There's always
> some new way of injecting scripts in an HTML document.
>
> So, in light of that, I think that all network filters, be it
> SPFs or proxies, should be considered to have no protection
> against embedded active content.
>
> $.02
>
> <flame shield up>
>
> /Mike
>
> --
> Mikael Olsson, EnterNet Sweden AB, Box 393, SE-891 28 �RNSK�LDSVIK
> Phone: +46-(0)660-29 92 00 Fax: +46-(0)660-122 50
> Mobile: +46-(0)70-66 77 636
> WWW: http://www.enternet.se E-mail: [EMAIL PROTECTED]
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
