Defeating Firewalls: Sneaking Into Office Computers From Home

Defeating Firewalls: Sneaking Into Office Computers From Home
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Defeating Firewalls: Sneaking Into Office Computers From Home manu 08-12-2005
Posted by manu on August 12, 2005, 7:21 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Greetings Everyone,

In this paper, I discuss a technique to get into your office computer
using ssh tunneling with some cool tricks. You don't need anything much
to implement this, not even an open port on the firewall. All you need
from your employer is the http(s) proxy which most of the companies
provide. This paper shows how an employee can ridicule the firewalls of
the company by facilitating the access to the company intranet using
easily available resources.

Here is the problem scenario - "You work with a company 'XYZ'. At
office, you cannot access internet directly and you 'browse' internet
using HTTP(S) proxy. Back at home, you have an internet connection. You
want to access the office computer from home, but you don't have the
VPN access." How do you do that? Read the paper for the solution.

Disclaimer: Please use your brain before using this technique. You can
be kicked out by your employer for using it. Don't blame me.

Here is the link to blog-entry:
http://manugarg.blogspot.com/2005/07/defeating-firewalls-sneaking-into.html

cheers,
^manu
---------
Manu Garg
http://www.manugarg.com
"Truth will set you free!"



Posted by Frankster on August 12, 2005, 9:35 am
If you were  Registered and logged in, you could reply and use other advanced thread options
> In this paper, I discuss a technique to get into your office computer
> using ssh tunneling with some cool tricks.

YOUR office computer?

This is insider sabotage, pure and simple. It is no secret that insiders
have the potential to do more harm to a network than any outside hackers, no
matter how skilled the outside hacker is. It has been this way since
networks began. That is why companies don't rely on purely technical
prevention (won't work most of the time anyway) but instead rely on sound
employee education, hiring practices, lie detector tests in some cases, and
look for opportunities to "set an example" for the other employees by
terminating and/or prosecuting those employees that attempt or succeed in
stealing company resources.

Bottom line... OF COURSE you can "hack" into your OWN NETWORK! Big deal.
Not exactly a profound discovery.

-Frank




Posted by Leythos on August 12, 2005, 2:32 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
manugarg@gmail.com says...
> Greetings Everyone,
>
> In this paper, I discuss a technique to get into your office computer
> using ssh tunneling with some cool tricks. You don't need anything much
> to implement this, not even an open port on the firewall. All you need
> from your employer is the http(s) proxy which most of the companies
> provide. This paper shows how an employee can ridicule the firewalls of
> the company by facilitating the access to the company intranet using
> easily available resources.
>
> Here is the problem scenario - "You work with a company 'XYZ'. At
> office, you cannot access internet directly and you 'browse' internet
> using HTTP(S) proxy. Back at home, you have an internet connection. You
> want to access the office computer from home, but you don't have the
> VPN access." How do you do that? Read the paper for the solution.
>
> Disclaimer: Please use your brain before using this technique. You can
> be kicked out by your employer for using it. Don't blame me.

It wont work in a properly setup firewall solution - and yes, it could
get anyone fired for doing it.

--

spam999free@rrohio.com
remove 999 in order to email me


Posted by Frankster on August 15, 2005, 11:27 am
If you were  Registered and logged in, you could reply and use other advanced thread options
> In this paper, I discuss a technique to get into your office computer
> using ssh tunneling with some cool tricks.

Man! All in all, bickering aside, this has been a very good thread. In it
you will find a lot of good info, some technical, some philosophical, some
efficiency oriented, but lots of good info. This thread is a very good
example, IMHO, about how there is no such thing as a "one-size-fits-all"
solution and it underscores the need to do a careful analysis of business
and customer requirements, before blindly applying a cookie-cutter generic
solution.

Additionally, by observing the controversy in this thread amongst IT
professionals, it will give you some idea about why it can be so difficult
to interface with other networks. Each network "owner" has their own ideas
about security and network policies. I have spent a good portion of my time
in IT negotiating a consensus amongst network owner to allow some form of
connectivity.

Anyway, interesting stuff I think :)

-Frank




Similar ThreadsPosted
Networking Home computers November 28, 2006, 5:19 pm
defeating firewalls made easy May 29, 2005, 9:25 am
Connecting to office Terminal Server from behind home Linksys router August 11, 2004, 7:32 pm
Site-to-Site VPN with Safe@Office 225 and 110 Firewalls. December 29, 2005, 5:03 pm
Help: Cant Connect to workgroup computers January 9, 2006, 7:57 am
Leaving computers on after work? October 14, 2007, 9:35 am
Remote computers and Norton FW 2005 May 16, 2005, 1:59 am
PC-cillin IS 2006 and workgroup computers ... May 17, 2006, 2:11 am
FBI: More Than 1 Million Computers Infected (WCVB Boston) June 14, 2007, 6:06 am
multiple office vpn question December 21, 2004, 10:19 pm

The site map in XML format XML site map

Contact Us | Privacy Policy