Astaro blocks Skype and other IM/P2P applications based on the same engine that does Intrusion Protection. If one of the existing IM/P2P blocks won't stop TeamViewer, then I don't think there's an Astaro solution until Astaro brings back the ability to add additional rules to IPS.
Astaro blocks Skype and other IM/P2P applications based on the same engine that does Intrusion Protection. If one of the existing IM/P2P blocks won't stop TeamViewer, then I don't think there's an Astaro solution until Astaro brings back the ability to add additional rules to IPS.
I think this is a VERY serious threat that needs attention.
Our customers are paying a lot of money and effort on preventing users from stealing information. However, right now, all the user has to do is start a program like teamviewer (which doesn't even need administrator-rights on Windows) and let someone on the outside in. And astaro can do nothing to prevent this
So far I have found no way to control Teamviewer.
If someone else has, please let me know.
Transparent proxy:
In web sec:
1. turn on httpS scan (don't forget - instal certificate via MMC)
2. and block categories: Remote Access, Information Security, Anonymizers, Anonymizing Utilities
check PF rules-
1.closed ports 5938
and
2. rules for terminal app (vnc, rdp.. etc) - disable. CLOSE ports
