| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20050124085744.GC26105@ait.ac.th> From: alain at ait.ac.th (Alain Fauconnet) Subject: blocking SkyPE? Hello list, This may be a bit borderline topic. Feel free to redirect me to a more appropriate place for this discussion if you know one. I need to block SkyPE at the border of our network for many reasons. It's not an easy task. The following paper: http://www1.cs.columbia.edu/~library/TR-repository/reports/reports-2004/cucs-039-04.pdf gives a lot of insight to the protocol. This stuff has been obviously engineered to bypass any port-based or IP-based blocks and L7 protocol identification. The folks of L7-filter have a pattern at http://l7-filter.sourceforge.net/layer7-protocols/protocols/skype.pat but it's classified as having 'marginal' effectiveness. Based on the paper mentioned above, the weak point might be the direct connection to the SkyPE login servers, but in my observation, login process seems to possibly take place through supernodes as well in recent versions. Has anyone worked on this? Googling doesn't return much useful. Greets, _Alain_
Powered by blists - more mailing lists