Often we talk about how destination port is not an accurate classification for controlling network traffic. At this point, hopefully that is obvious. Everyone knows that just about anything can get out of an enterprise network via port 80 or 443. Lately I have had several discussions with customers curious about protocol validation and ensuring [...]

This TechCrunch article outlines how Hulu Networks, the rapidly growing purveyor of streaming HD content, is taking some fairly extreme steps to make sure that their content is only accessed by users in the US. Apparently anyone with an anonymous IP address is blocked. An interesting step that will, in all likelihood, fail.
Why? It’s all [...]

Anybody can set up external proxies.

ALERT – The wait is over… No longer do users need a precious invitation to join the closed Joost beta to experience IPTV at its best. Joost has recently opened their 1.0 beta to the public. Enhancements include a slightly revised user interface and open API for 3rd party widget development. Joost has differentiated themselves [...]

ALERT – Meebo, the web-based instant messaging service, has now added a file transfer feature that allows users to share files with IM contacts regardless of which IM network they are on. Utilizing Amazon’s S3 (Simple Storage Service), Meebo provides a 2-step file transfer process. When users upload a file with Meebo it is sent [...]

ALERT – Capitalizing on user fears of hackers capturing and viewing their internet traffic, the Storm worm’s latest propagation method uses spam email with the subject line “Careful, you.re being watched.” to suggest that users download an application called Tor to provide safety and anonymity in surfing the web. However, when users click on the [...]

ALERT – Google Desktop has become popular in large part due to very painful desktop search functions in Windows. It is able to find documents and email very quickly and accurately. However, it has a feature that should probably be of considerable concern for enterprises. A feature called Search Across Computers ought to raise eyebrows. [...]

ALERT – If you are trying to control IM use and haven’t heard of Meebo, it is very likely your users have. Meebo’s purpose in life is to allow people to continue using IM even at companies that have a policy to block it. It is a web-based multi-protocol IM client that is accessed via [...]

Network administrators are more and more concerned about scrutinizing the traffic that comes in and out of their networks, but applications and attackers know that they won’t block HTTP traffic over port 80.
So if you can't beat'em, join'em. Applications and attacks have quickly learned that they can evade firewalls and other security devices via HTTP [...]