On Tuesday 25 June 2002 08:34 am, Arvind wrote: > This depends on the hacker. If the hacking method is know to the firewall, > it will filter out those packets after monitoring the content and will not > let that know method reach the unpatched IIS server.
Well, let us consider an imaginary webserver with a known vulnerability, so that if the request is like: GET /evil.html HTTP/1.0 it will crash the server/opens a backdoor. Your firewall knows about this, and say it is configured to filter out /evil.html from the HTTP request. Now put the same webserver on HTTPS. The cracker now connects to port 443 and makes the same request. How will your firewall filter this out?? I reiterate. No firewall is going to protect an unpatched IIS (or even Apache) server that is public. A firewall is only the first step. > I have to run 2 linux servers for New query, new post. Binand ------------------------------------------------------- Sponsored by: ThinkGeek at http://www.ThinkGeek.com/ _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
