On Mon, Dec 25, 2000, System1 wrote about "ipchains":
> its not so easy , i blocked while ago port 5194 (icq login port) but today i
> found users still able to connect.
>..
> and to block aol messanger (another client with security bugs which allows
> remote attacker take full control of users systems)
What do you mean "another" client? Do you mean to imply that ICQ's client
also has such a vulerability? Which version?
Also, since this is a Linux group after all, you won't be surprised that many
of us use non-official clients like licq or micq, which don't share any bugs
with ICQ's official client.
So I urge you to rethink blocking ICQ. Unless you have a very strong
justification (e.g., you run a school network and the kids have been using
ICQ for trafficking drugs), then the block will just annoy your users,
with no real security benefit (will you also delete Microsoft Outlook from
every computer when a VB virus is on the loose? Or more to the point,
completely block port 25 when such a virus is spreading?)
--
Nadav Har'El | Monday, Dec 25 2000, 28 Kislev 5761
[EMAIL PROTECTED] |-----------------------------------------
Phone: +972-53-245868, ICQ 13349191 |A professor is one who talks in someone
http://nadav.harel.org.il |else's sleep.
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
