server address:login.icq.com
icq login server port:5190
aim login server address:login.oscar.aol.com
aim login server port:5190
yahoo login server address:cs.yahoo.com
yahoo login server port:5050
L8r
Amoediun
client IP's, you should be golden.
Give it a shot.
Best of luck,
Bejon
-Original Message-
From: Nil Fiat [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 01, 2002 8:36 AM
To: [EMAIL PROTECTED]
Subject: RE: More on MSN Messenger, AIM and other chat programs?
Hey yo.
Me=branch sysadmi
Hey yo.
Me=branch sysadmin for a company that thinks "security" is a
savings & loan term.
My system=WAN-connected w/ firewall, server & service-based
virusscanning, all sorts of Windoze and every patch I can find.
My problem: Messengers. They're against company policy, so for a
while I jus
cc:
Subject: RE: Best means to block MSN
Messenger, AIM and other chat
02/25/2002 02:38 programs? Thank you!
, 2002 1:39 PM
To: [EMAIL PROTECTED]
Subject: RE: Best means to block MSN Messenger, AIM and other chat
programs? Thank you!
--- KEN MORRIS <[EMAIL PROTECTED]> wrote:
> we will stopping them from downloading
> the program
Just out of curiosity, how do you plan on doing
this? It
--- KEN MORRIS <[EMAIL PROTECTED]> wrote:
> we will stopping them from downloading
> the program
Just out of curiosity, how do you plan on doing
this? It seems to me that doing this may as difficult
as blocking the program (as in your original
question).
I think that setting a company poli
PROTECTED]
Subject: RE: Best means to block MSN Messenger, AIM and other chat
programs?
I have worked with MSN Messenger issues in the past. The problem with MSN
is that it uses the H.323 protocol for the capabilities of VOIP (netmeeting)
and Video Conferencing (also netmeeting). H.323 uses d
Message -
From: "Michael Ungar" <[EMAIL PROTECTED]>
To: "KEN MORRIS" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, February 21, 2002 8:53 PM
Subject: Re: Best means to block MSN Messenger, AIM and other chat programs?
> Can you stop by bl
>Hello,
>I am using both filtering software and Firewall (GNat Box) to try to
>block out the use of several chat programs. On the FW I have blocked
>ports:
>4000 - ICQ
>1863 - MSN Messenger
>5050 - AOL and
>5190 for Yahoo
>After having set up the blocking rule, I then tested MSN Messenger in
>the
1 AM
To: [EMAIL PROTECTED]
Subject: Best means to block MSN Messenger, AIM and other chat programs?
Hello,
I am using both filtering software and Firewall (GNat Box) to try to
block out the use of several chat programs. On the FW I have blocked
ports:
4000 - ICQ
1863 - MSN Messenger
5050 - AOL and
Can you stop by blocking via destination messenger
server ?
Mike
--- KEN MORRIS <[EMAIL PROTECTED]> wrote:
> Hello,
> I am using both filtering software and Firewall
> (GNat Box) to try to
> block out the use of several chat programs. On the
> FW I have blocked
> ports:
> 4000 - ICQ
> 1863 - MSN
TBH, you don't really have that much of a chance blocking these programs by
port, as three of them (I haven't used Yahoo) are perfectly capable of
going though other ports, aside from the default port numbers (I have seen
AIM using port 53 and port 80 to make it's connec
Its better not to block ports as it will work on other ports, but to try and block the
IP addys of the servers these programs try to connect to.
mrcorp
The information contained in this message is intended only for the recipient,
Hello Ken,
One of the things you will find with MSN is that if the primary port is
disabled it will resort to either 8080, 8000 or similar (I don't remember
which ones exactly).
It might be tough to disable strictly from the firewall.
hth,
Robert
From: KEN MORRIS [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 20, 2002 8:31 AM
To: [EMAIL PROTECTED]
Subject: Best means to block MSN Messenger, AIM and other chat programs?
Hello,
I am using both filtering software and Firewall (GNat Box) to try to
block out the use of several chat programs.
Hello,
I am using both filtering software and Firewall (GNat Box) to try to
block out the use of several chat programs. On the FW I have blocked
ports:
4000 - ICQ
1863 - MSN Messenger
5050 - AOL and
5190 for Yahoo
After having set up the blocking rule, I then tested MSN Messenger in
the
Incidentally, trillian (www.trillian.cc as mentioned by another person)
(possibly other clients) support session-key encryption for AIM, which
could foil any attempts.
Though of course, lately trillian has been having enough problems just
connecting to AIM :)
But just so that you're awa
Save the snort logs, import into ethereal. Works well...t
On Wed, 6 Feb 2002, Mark Ng wrote:
> Perhaps you could use tcpdump to log all AIM packets and then use ethereal
> to reassemble the tcp streams ? I've reassembled irc conversations this way
> pretty painlessly.
>
> -
So I got a lot of really good feed back from all you thanks for the help. I
looked at all your suggestions and tried them out. What I found is that
snort is the best way to go. I created this rule,
alert tcp any any -> any 5190 (msg:"AIM Message"; content:"HTML";)
This is
http://www.iopus.com/
They have a great key logger called STARR will log AIM, AOL, MSN, etc...to
name just a few.
Hi there,
I find sniffit works fine and then you could probably could join the
files and use the Sort command.
Best of Luck
Pastyhermit.
d'Ambly, Jeff wrote:
>My boss asked me the other day if we could log AOL instant messenger
>conversations, I know of course this can be done with any sniffe
Perhaps you could use tcpdump to log all AIM packets and then use ethereal
to reassemble the tcp streams ? I've reassembled irc conversations this way
pretty painlessly.
-Original Message-
From: Keith T. Morgan [mailto:[EMAIL PROTECTED]]
Sent: 05 February 2002 20:05
To: d'Ambl
aps I could use snort, but how could I reassemble the
> conversations? I would not like to spend all my time gathering and
> sorting all
> this info. Has
> any one tried this before and if so how well did it work?
is your boss wanting to log employee im's or just record own perso
Hi,
Try msgsnarf from dsniff suite (http://www.monkey.org/~dugsong/dsniff/) This will log
all data for AIM and ICQ. But is this legal in your environment?
Stefan
===
stefan alpers
system enigeer
glueck & kanja technolog
Yes you can actually log AIM conversations.. A lot of clients have
features that do so, but in the AIM's client, you can download an
"add-on" for it. here is the link:
http://yourpage.blazenet.net/jbeatty/logginghack.zip the instructions
are inside the ZIP.. but in case they
D]]
Sent: Monday, February 04, 2002 2:22 PM
To: '[EMAIL PROTECTED]'
Subject: AIM
My boss asked me the other day if we could log AOL instant messenger
conversations, I know of course this can be done with any sniffer but I
was
wondering if there was a quick and easy way to do this. I was think
.
http://computerworld.com/nlt/1%2C3590%2CNAV47_STO68023_NLTAM%2C00.html
- Original Message -
From: "d'Ambly, Jeff" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, February 04, 2002 2:21 PM
Subject: AIM
> My boss asked me the other day if we c
try using msgsnarf, it comes with in the dsniff tarball i believe.
it doesn't just log aim conversations, but the following:
DESCRIPTION
msgsnarf records selected messages from AOL Instant Mes
senger, ICQ 2000, IRC, MSN Messenger, or Yahoo Messenger
chat sessions
x27;[EMAIL PROTECTED]'
Subject: AIM
My boss asked me the other day if we could log AOL instant messenger
conversations, I know of course this can be done with any sniffer but I was
wondering if there was a quick and easy way to do this. I was thinking
perhaps I could use snort, but h
My boss asked me the other day if we could log AOL instant messenger
conversations, I know of course this can be done with any sniffer but I was
wondering if there was a quick and easy way to do this. I was thinking
perhaps I could use snort, but how could I reassemble the conversations? I
would n
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everyone,
It has recently come to my attention that the buffer overflowing
affecting aim is still remotely exploitable.
I just thought that I would let the list know that CONTARY TO
PUBLISHED REPORTS the vulnerability is still being actively
31 matches
Mail list logo
