+ Post New Thread
Results 1 to 2 of 2
Internet Related/Filtering/Firewall Thread, Transparent proxy vulnerability in Smooth Guard??? in Technical; Has anyone got any more information on this? Proxy server bug exposes websites' private parts • The Register Has it ...
  1. #1

    Join Date
    Dec 2007
    Posts
    149
    Thank Post
    0
    Thanked 5 Times in 5 Posts
    Rep Power
    16

    Transparent proxy vulnerability in Smooth Guard???

    Has anyone got any more information on this?
    Proxy server bug exposes websites' private parts • The Register

    Has it been fixed in the latest smooth guard / advanced firewall?

  2. #2
    Danielbarron's Avatar
    Join Date
    Feb 2009
    Posts
    21
    Thank Post
    0
    Thanked 5 Times in 4 Posts
    Rep Power
    12
    It's a very interesting and complicated topic. More than you might think. Just look at the comments on that article. Many people not knowing what they are talking about and just about the only one who knows anything is the long post by AC. (No it was not me!!).

    But to answer your question - yes it is fixed. On the proxy page there is a tick to allow you to turn on checking that the destination IP and the host header match. "Check request headers against original destination IP:" Or use many of the workarounds.

    However the problem is that most big companies like Google, Microsoft, Yahoo, iTunes etc use stealth DNS round robin. This means one can never be sure that the client PC and the proxy will agree on which IP(s) a hostname resolves to. The vulnerability exists when they differ. Those companies make checking very very difficult. There is more info here: https://support.smoothwall.net/index...leid=337&nav=0

SHARE:
+ Post New Thread

Similar Threads

  1. Smoth Guard INitial settings
    By cjohnsonuk in forum Internet Related/Filtering/Firewall
    Replies: 2
    Last Post: 9th March 2009, 03:46 PM
  2. [Video] German Coast Guard
    By Silvor in forum Jokes/Interweb Things
    Replies: 0
    Last Post: 23rd January 2009, 02:28 PM
  3. ISA server as a transparent proxy
    By FN-GM in forum Wireless Networks
    Replies: 30
    Last Post: 25th February 2008, 04:33 PM
  4. VPN with Transparent Proxy
    By Jackd in forum Wireless Networks
    Replies: 6
    Last Post: 14th February 2008, 04:18 PM
  5. Squid Transparent Proxy.
    By Jackd in forum Network and Classroom Management
    Replies: 2
    Last Post: 25th July 2007, 06:54 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •