Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Focus on Microsoft
Shared drives through a firewall Mar 22 2007 02:01AM
aeheald gmail com (4 replies)
Re: Shared drives through a firewall Apr 17 2007 08:53AM
Nicolas RUFF (nicolas ruff gmail com) (1 replies)
RE: Shared drives through a firewall Apr 17 2007 01:40PM
Jim Harrison (Jim isatools org)
RE: Shared drives through a firewall Mar 22 2007 01:54PM
mcclenbw oneonta edu
Re: Shared drives through a firewall Mar 22 2007 01:44PM
Mailing Sécurité Focus (mailingsecurite maisonlaprise com)
RE: Shared drives through a firewall Mar 22 2007 01:41PM
Jim Harrison (Jim isatools org) (1 replies)
Re: Shared drives through a firewall Mar 22 2007 05:14PM
James (njan) Eaton-Lee (james mailing gmail com) (1 replies)

Jim Harrison wrote:
> You might consider using FTPS or SSH connections; they're relatively
> secure, depending on the server/client package you select.

Webdav is under-promoted in these scenarios - it's built on top of a
well-understood and easily securable protocol (http), and it has great
crossplatform support. Webdav allows access either via a webdav client
that supports writing (windows explorer and gnome/nautilus both do this,
and OSX/KDE/$desktopofchoice probably do too) or a standard http client
(ie, lynx, firefox). It supports well-understood mechanisms to encrypt
traffic (TLS/SSL) and authenticate users (http basic auth).

It has good application layer support from a wide variety of reverse
proxy/firewall products (including ISA) designed for protecting web
traffic if you choose to expose it externally.

It's also fairly difficult to distinguish from a regular webserver, so
it's far less likely to draw attention from attackers than opening up
SMB ports, particularly if you had a webserver running anyway.

There's also been webdav support in IIS and in Apache for quite some time...

- James.

--
James (njan) Eaton-Lee | UIN: 10807960 | http://www.jeremiad.org

"The universe is run by the complex interweaving of three
elements: Energy, matter, and enlightened self-interest." - G'Kar

https://www.bsrf.org.uk | ca: https://www.cacert.org/index.php?id=3
--
0? *?H?÷
 ?0?1 0 +0? *?H?÷
 ? ü0?ú0?â `0
 *?H?÷
0y10U
Root CA10U http://www.cacert.org1"0 UCA Cert Signing Authority1!0 *?H?÷
 support (at) cacert (dot) org0 [email concealed]
061218190127Z
071218190127Z0B10UCAcert WoT User1&0$ *?H?÷
 james.mailing (at) gmail (dot) com0 [email concealed]?"0
 *?H?÷
?0?
?ër&âQ?p?ËOÏD±x??D÷u?)¢×?O?K·¨í̳u#ú/¹CFu'ܳiÖHhþZ}?¾p¯?1.)ó?W
ȶº`æ¦à®?»zÓçµ?XQ?ځZ±5!¥5°Í* êX¿?i?«>ïð¼¬å½mt?E?@
Txúj&U=bh&¼??ø¶·lÙӐj¦È@ÄÞ?j?¬??â3EiíKÁ??;À»ÅËD?
¶ô@Ï¥?/;>r¹»ü??ñýÇñ?X?º/e¿S®}?'?6öâÅ???^¡êG?ål`P{?r»{@Û6¼B¹ j!Õ?X«£Á0¾0 Uÿ00V `?H?øB
IGTo get your own certificate for FREE head over to http://www.CAcert.org02+&0$0"+0?http://ocsp.cacert.or
g0"U0james.mailing (at) gmail (dot) com0 [email concealed]
 *?H?÷
?s@UgOrþ´²?ãMÈ{P±"MôØÀÅ¢zp«?ø1+ HX[M?ƝbÞñ@H½]pÆté?X¼à/öïN
+Aå{??FÅ8lf§/2ïÙ²Ü)µü 2ýt?®Ô¸~?ên<?°2?Åã? CÝ8¥?Gå?oþ°´x³¹ß4 Lsî¸LÌ?&lZ¡Ú?Â^Ӂ,?Àþ/NrÌZô°Ê¤Ö?~"i0*yYí¡
[ÈF4¥#ÎP¨t?® Ã{è¤{?
ªg?#-9Ö<®iFãª"À?"Û¸FJFûÏýQÅÔßhv~Ü.?®N?oK7Yãk?w¤H?ñ1w\je!Õ2
å?³óåÒÿ?òµ¡?eþrL*©Ñ;~"Ë×N#âéÊ6Û?]Vkx¬D³Èñ°??¬J?tbµ?ÔʪíäÖs:
t??xSbö5¯fû¿$IGÅóâÔ7·âm?ÞYô<í <üxõ¯jBÑ4"êt?«»ÕÎä¸?[˳a5-̨^ËWÙÓ1ìvc$¹ñ?ÀNÝS[ÜÁý¢)ó?Ï%{¿ üg=ë?å»uS¬BQ~Õ®3?GÛX?gbé~àBÚ?eàÑn%ót?vÊF?gG̺?þ?^,*èx3k?÷táZrf'¥??Å0
?ú0?â `0
 *?H?÷
0y10U
Root CA10U http://www.cacert.org1"0 UCA Cert Signing Authority1!0 *?H?÷
 support (at) cacert (dot) org0 [email concealed]
061218190127Z
071218190127Z0B10UCAcert WoT User1&0$ *?H?÷
 james.mailing (at) gmail (dot) com0 [email concealed]?"0
 *?H?÷
?0?
?ër&âQ?p?ËOÏD±x??D÷u?)¢×?O?K·¨í̳u#ú/¹CFu'ܳiÖHhþZ}?¾p¯?1.)ó?W
ȶº`æ¦à®?»zÓçµ?XQ?ځZ±5!¥5°Í* êX¿?i?«>ïð¼¬å½mt?E?@
Txúj&U=bh&¼??ø¶·lÙӐj¦È@ÄÞ?j?¬??â3EiíKÁ??;À»ÅËD?
¶ô@Ï¥?/;>r¹»ü??ñýÇñ?X?º/e¿S®}?'?6öâÅ???^¡êG?ål`P{?r»{@Û6¼B¹ j!Õ?X«£Á0¾0 Uÿ00V `?H?øB
IGTo get your own certificate for FREE head over to http://www.CAcert.org02+&0$0"+0?http://ocsp.cacert.or
g0"U0james.mailing (at) gmail (dot) com0 [email concealed]
 *?H?÷
?s@UgOrþ´²?ãMÈ{P±"MôØÀÅ¢zp«?ø1+ HX[M?ƝbÞñ@H½]pÆté?X¼à/öïN
+Aå{??FÅ8lf§/2ïÙ²Ü)µü 2ýt?®Ô¸~?ên<?°2?Åã? CÝ8¥?Gå?oþ°´x³¹ß4 Lsî¸LÌ?&lZ¡Ú?Â^Ӂ,?Àþ/NrÌZô°Ê¤Ö?~"i0*yYí¡
[ÈF4¥#ÎP¨t?® Ã{è¤{?
ªg?#-9Ö<®iFãª"À?"Û¸FJFûÏýQÅÔßhv~Ü.?®N?oK7Yãk?w¤H?ñ1w\je!Õ2
å?³óåÒÿ?òµ¡?eþrL*©Ñ;~"Ë×N#âéÊ6Û?]Vkx¬D³Èñ°??¬J?tbµ?ÔʪíäÖs:
t??xSbö5¯fû¿$IGÅóâÔ7·âm?ÞYô<í <üxõ¯jBÑ4"êt?«»ÕÎä¸?[˳a5-̨^ËWÙÓ1ìvc$¹ñ?ÀNÝS[ÜÁý¢)ó?Ï%{¿ üg=ë?å»uS¬BQ~Õ®3?GÛX?gbé~àBÚ?eàÑn%ót?vÊF?gG̺?þ?^,*èx3k?÷táZrf'¥??Å1
??0??0?0y10U
Root CA10U http://www.cacert.org1"0 UCA Cert Signing Authority1!0 *?H?÷
 support (at) cacert (dot) org [email concealed]`0 + ?Û0 *?H?÷
 1  *?H?÷
0 *?H?÷
 1
070322171435Z0# *?H?÷
 1*nT{~ëûÝ6
ì£çÂ~?ûß0R *?H?÷
 1E0C0
*?H?÷
0*?H?÷
?0
*?H?÷
@0+0
*?H?÷
(0? +?71?0?0y10U
Root CA10U http://www.cacert.org1"0 UCA Cert Signing Authority1!0 *?H?÷
 support (at) cacert (dot) org [email concealed]`0? *?H?÷
  1? ?0y10U
Root CA10U http://www.cacert.org1"0 UCA Cert Signing Authority1!0 *?H?÷
 support (at) cacert (dot) org [email concealed]`0
 *?H?÷
?ëdYËã>qÑ{{©h]Å?J\L#&?Y¡­´>àæ?dÎíÚáP:ÏÏÞ£µKh½éÛj?º?·ÈíY.1
f?|)
Ö-ðð³b:Éz´·A¯,ÔY?t«¹ðiufܳéH"NÜ6I ýHÞ?¢i?!ªo
ò?ýÚ]íé4?µæß<Á?s!:Kª¯?¡¾ © w<??6Nûÿ|\ÑÌtxr¬­öõ:ß?¼E´Rç,¡?h?³Q8=Ûj?aX?¹Ì3¦(hÞ¹cÓ?âsõ¥?ë^¾ï
§l
r?¨¹û,Ük1x¯¤?Ò
sw?·~kX¶?"8

[ reply ]
RE: Shared drives through a firewall Mar 22 2007 07:15PM
mcclenbw oneonta edu (1 replies)
Re: Shared drives through a firewall Mar 22 2007 08:14PM
James (njan) Eaton-Lee (james mailing gmail com)







 

Privacy Statement
Copyright 2009, SecurityFocus