Mail from ILUG-BOM list (Non-Digest Mode)
_______________________________________________
----- Original Message -----
From: Ranjeet Walunj <[EMAIL PROTECTED]>
How does one protect themselves from malicious Java Script or Java??
How can one do this, other than totally filtering out Java Script or Java
totally,
is there any other way one can protect a node in a network which is online,
and behind a firewall?
Firewalls are unable to do so, since JavaScript communication takes place
threw port 80 or the HTTP layer. (AFAIK...not sure ..comment)
So there is no way of differentiate it from normal HTML or is there?
Ranjeet
hi ranjeet...
filtering java and javascript is similar to your virus scanners..
there are specialised java scanners that check the incoming code, generate a
MD5 from it, and compare it to a database of known malicious code.....
also, applets are chked for digital signatures...
some scanners also create a behaviour profile of the applet..and compare it
to the security policy...to decide.
if your firewall blocks outgoing connections, then these applets wont work
anyway...
but hell..the simplest way is to use ur browser''s security manager... coz
thats ur weakest link....:-)
regards,
kishor
"Very funny, Scotty. Now beam down my clothes."
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
_______________________________________________
Website: http://www.ilug-bom.org.in/
Linuxers mailing list
[EMAIL PROTECTED]
http://ilug-bom.org.in/mailman/listinfo/linuxers
