Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Bypassing Firewalls

Status
Not open for further replies.
ackka

ackka

Programmer
Sep 25, 1999
269
US
Hi just though i would post this, these types of programs have been around for awhile but could be usefull to somebody :?<br><br>This is a program called hypertunnel, basically it allows you to put packets from ftp,telnet, virtually any internet based program, inside of http requests.&nbsp;&nbsp;The reason to do this is obvously to get around a firewall.&nbsp;&nbsp;You basically need one computer inside the firewall and the other on the outside.&nbsp;&nbsp;you then could basically circumvent a firewalls protection.&nbsp;&nbsp;If say your were trying to get access to a company or something.&nbsp;&nbsp;All you would need to do is get a remote control utilitie to work with hypertunnel, set it up on a machine inside the firewall.&nbsp;&nbsp;And you could use that remote controlled computer inside the firewall to try to break into the servers inside the firewall.&nbsp;&nbsp;You would be able to control this from outside in a safe location, like a library and do whatever you want :)<br><br>link to hypertunnel<br><A HREF=" TARGET="_new"> HREF=" TARGET="_new"> me if im wrong :) or you have any questions<br> <p>ackka<br><a href=mailto:tmoses@iname.com>tmoses@iname.com</a><br><a href= my site</a><br>"In the beginning there was HTML, and it was good"<br>
by Nick Heinle, Designing with JavaScript<br>
<br>
<br>
 
If this works the way Nick describes, does anyone know how to protect against it?&nbsp;&nbsp;At least it looks like you need an insider to set up the initial &quot;hole.&quot; <p> Jeff<br><a href=mailto: masterracker@hotmail.com> masterracker@hotmail.com</a><br><a href= > </a><br>If everything seems to be going well: you don't have enough information.......
 
On a second note, i believe Real Player has also adopted a version of this code.&nbsp;&nbsp;If you are a firewall admin and trying to block real player for example, they have the option to change your transport mechanism to http.&nbsp;&nbsp;So basically you can go to all the real player servers and view their content even if your firewall admin does not want this, ex. School etc..&nbsp;&nbsp;<br><br>So basically any manufacturer who does not want there product blocked by a firewall admin can just do it this way.&nbsp;&nbsp;It would be very easy to write a version of napster or something, to tunnel its requests to the napster server in http requests, provided the napster server can take apart the http requests.<br><br>I also have no idea how to stop this, any packet filtering mechanism just sees the stuff inside of http requests and my guess is would not be able to deseminate the info from normal http traffic??????<br><br> <p>ackka<br><a href=mailto:tmoses@iname.com>tmoses@iname.com</a><br><a href= my site</a><br>"Do No Harm, Leave No Tracks, Be Respectful"<br>
ICMP Summer 2000, 2600 Article<br>
<br>
 
Status
Not open for further replies.

Similar threads

HopnDude
  • Locked
  • Question
Two Firewalls on 1 VM running 2 VE with 2-2 Port Gigabit NIC's. Doable?
Replies
1
Views
80
nblount
nblount
paulmoss
  • Locked
  • Question
Connecting 2 Firewalls via a secure tunnel
Replies
2
Views
71
PeterHurst
PeterHurst
goulin1
  • Locked
  • Question
Site-To-Site VPN Between Nokia Checkpoint R65 Firewalls
Replies
1
Views
99
goulin1
goulin1
campbmb
  • Locked
  • Question
How to tell if user is 'bypassing' the proxy
Replies
3
Views
49
Grenage
Grenage
ronan2007
  • Locked
  • Question
regarding squid bypassing proxy
Replies
0
Views
23
ronan2007
ronan2007

Part and Inventory Search

Sponsor

Back
Top