-----BEGIN PGP SIGNED MESSAGE-----
Hi Jeff;
> Some of our employees are installing this application on their PCs.
> Anyone know if SETI@home is a security concern and if so, what
> ports to block?
Well, the product uses standard HTTP ports to communicate, to a known
set of servers. It will connect to these servers, collect data
packets, and then send the results (after some time).
It works fine through most proxies (like Squid), and passes the FW-1
proxy test too. In terms of content, there's nothing dynamic and
executable in the packet - it's a set of data that the client
performs some math on.
The real areas of security issue I see are that:
. You have to have a level of trust that the closed-source
application won't be rodgering your PC senseless etc etc.
. The servers at the Berkeley end are not compromised and don't send
data harmful to Set to your clients.
Realistically, it's probably no more or less harmful than standard
surfing, esp. if you couple it with a proxy and a filter.
Cheers
Richard
- --
Richard Parry [EMAIL PROTECTED]
Glue Guy: CCNA, CSE(SMB), MCP, makes pretty good coffee Optimation
Phone: +64 4 470 5814 x 848 Pager: [EMAIL PROTECTED]
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.3 for non-commercial use <http://www.pgp.com>
iQEVAwUBOaT0KPVxtQ5VlW2tAQFToggAhiqBFDOt0FtNxcdTh0Hr285VIUJ0rA8o
7kH6y6iX30OgGME2tII3xq9YTELJHa8rAzj1ZYe9+YSCsoMKYilbj22lSOz4x/MB
GaRUdKVw8o3teSZle6we/4TARBPIiFXGQz3iEO90ONzOgPOVUbi23sVcka6JsQIa
aSEgOvtU5hKoCcWbjS+fgTeEOktmtpgOFvarc+sLMx19eQkLbossgq2KDa0McCwD
rUFvyjV9d9xvMZl9iNTtLrOqgurp+1lrd170+2CWNo8bXIlC5KGlKAHj8aXhWnhN
sfGsOtyvBbRd7g0hKJEjn3k5WBWU7QBKQdCLL7tGOWyPufZECUGcNQ==
=KwGH
-----END PGP SIGNATURE-----
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
