Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 24 replies
  • Subscribers 1 subscriber
  • Views 7125 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[7.500] streaming and time managed access

RFCat_vk_01
Hi,
A new version of the http proxy doesn't block users.

The streaming content is open all the time, it is an unmanaged stream in the http proxy, so effectively it bypasses the ability of timed managed access to control it.

While you might say a different http profile will fix the problem, it doesn't because there isn't a place to put streaming. Blocking a web sites (by category) that allow streaming does not work.

Ian M


This thread was automatically locked due to age.
Parents
  • 0
    time="3511421 ms"
    time="3486652 ms" = 58 minutes 7 seconds
    time="3584441 ms"
    time="3558384 ms"
    time="3754786 ms"
    time="3789717 ms"
    time="3731842 ms"

    Looks like that confirms my guess, doesn't it?  I bet a cron job to restart the HTTP Proxy at 2AM would do the trick until he figures another way to outsmart you [;)]

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Hi Bob,
    I have changed the PPPoE interface to restart at 2am with a 1 minute break. See what happens.

    Findings.
    1/. audio/video streaming bypass in HTTP has no affect
    2/. audio/video streaming is not controlled by filter actions in fact it is not controlled
    3/. you can put audio/video streaming protocols in the allowed target services - not affected by dual virus scanning.

    Summary, http security has a couple of big holes.

    The ASG was a fresh install tonight, v7.500 iso, v7.502 up2date, restored from backup taken immediately before fresh installation.


    Ian
Reply
  • 0 in reply to BAlfson
    Hi Bob,
    I have changed the PPPoE interface to restart at 2am with a 1 minute break. See what happens.

    Findings.
    1/. audio/video streaming bypass in HTTP has no affect
    2/. audio/video streaming is not controlled by filter actions in fact it is not controlled
    3/. you can put audio/video streaming protocols in the allowed target services - not affected by dual virus scanning.

    Summary, http security has a couple of big holes.

    The ASG was a fresh install tonight, v7.500 iso, v7.502 up2date, restored from backup taken immediately before fresh installation.


    Ian
Children
No Data