Re: Websense classifies Cisco.com as a hack site :p

From: Joe Astorino (joe_astorino@comcast.net)
Date: Sat Mar 21 2009 - 00:05:25 ART

Then there is ssh forwarding mixed which has gotten me through nearly every major corporate firewall I have ever been behind.
"He not busy being born is busy dying" -- Dylan

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.7 (MingW32) - WinPT 1.2.0
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=8HMA
-----END PGP PUBLIC KEY BLOCK-----

-----Original Message-----
From: "Jared Scrivener" <jscrivener@ipexpert.com>

Date: Fri, 20 Mar 2009 22:15:08
To: 'Darby Weaver'<ccie.weaver@gmail.com>; 'Muhammad Nasim'<muhammad.nasim@gmail.com>
Cc: 'Atlanta CCIE'<atlantaccie@gmail.com>; 'Anthony Sequeira'<asequeira@internetworkexpert.com>; 'Cisco certification'<ccielab@groupstudy.com>
Subject: RE: Websense classifies Cisco.com as a hack site :p

*Takes off CISSP hat, puts on grey hat*

Websense is a bit harder to bypass than you might think (trust me, I've
worked in an environment that deployed it and bypassing it can be tough if
it is setup right). The IP address approach won't work the moment you click
on a URL, as it does Layer 7 inspection of packets (and intercepts at Layer
2 by sniffing VLANs rather than Layer 3, which takes away some of the usual
strategies to bypass proxy servers).

On the plus side, Websense generally allows www.gotomypc.com (a great
service from Citrix), so where there's a will, there's a way. :)

*Puts CISSP hat back on, pretends he left his grey hat in 1998*

Cheers,
 
Jared Scrivener CCIE3 #16983 (R&S, Security, SP), CISSP
Sr. Technical Instructor - IPexpert, Inc.
Telephone: +1.810.326.1444
Fax: +1.810.454.0130
Mailto: jscrivener@ipexpert.com

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Darby Weaver
Sent: Friday, 20 March 2009 8:57 PM
To: Muhammad Nasim
Cc: Atlanta CCIE; Anthony Sequeira; Cisco certification
Subject: Re: Websense classifies Cisco.com as a hack site :p

Just "hack" websense and it's not that hard to do. Go where you need to
go.

x.x.x.x = what in decimal?

Decimal Numbers are incredible.

On Fri, Mar 20, 2009 at 6:14 PM, Muhammad Nasim
<muhammad.nasim@gmail.com>wrote:

> It seems to me Websense wants Cisco to purchase them as cisco is just
> antivirus and URL filtering prdocuts away to have most complete line-up
for
> security : )
>
>
>
> 2009/3/21 Atlanta CCIE <atlantaccie@gmail.com>
>
> > I wonder who is getting fired for this...
> >
> > On Fri, Mar 20, 2009 at 4:48 PM, Anthony Sequeira <
> > asequeira@internetworkexpert.com> wrote:
> >
> > > Oh the sweet irony.
> > >
> > > Anthony J. Sequeira, CCIE #15626, CCSI #23251
> > > Senior CCIE Instructor
> > >
> > > asequeira@internetworkexpert.com
> > >
> > > Internetwork Expert, Inc.
> > > http://www.InternetworkExpert.com
<http://www.internetworkexpert.com/><
> http://www.internetworkexpert.com/>
> > > Toll Free: 877-224-8987
> > > Outside US: 775-826-4344
> > >
> > > On Mar 20, 2009, at 3:48 PM, Atlanta CCIE wrote:
> > >
> > > Just read this...
> > >>
> > >>
> > >>
> >
>
http://www.ccietalk.com/2009/03/20/websense-mistakes-ciscocom-for-hack-site
> > >>
> > >>
> > >> Blogs and organic groups at http://www.ccie.net
> > >>
> > >>
> _______________________________________________________________________
> > >> Subscription information may be found at:
> > >> http://www.groupstudy.com/list/CCIELab.html
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >>
> > >
> >
> >
> > --
> > CCIE# 17xxx
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> >
> >
> >
> >
> >
> >
>
>
> --
> Muhammad Nasim
> Network Engineer
> Saudi Arabia
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net

This archive was generated by hypermail 2.1.4 : Mon Apr 06 2009 - 06:44:06 ART