Does anyone know of an effective way to block remote desktop applications like GoToMyPC.com, PCanywhere, Fog Creek Copilot etc. at the network level, that doesn't require me to manually find the relevant IP addresses, etc.?
For example does someone host updated IPS signatures, or updated IP lists that could be used in an IPS?
Has anyone else on this list had this challenge, and how did you solve it?
Kind regards, Daniel Tams
Why do you allow unrestricted outbound?
Why does your company not just allow outbound to specific sites that are approved?
I work with Proventia stuff frequently and I know IBM ISS Proventia IPS has signatures for these:
Being more draconian in egress and inbound filtering can also deal with this, but sensing it on a network level often has uses in environments that aren't as militaristically locked down as other posters suggest. Also, generally those intent on using such technologies will use ports that are allowed to subvert whatever rote policies are in place.
I think Untangle
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.