"Acceptable Usage Policy" is a cross-functional issue involving HR and IT. HR tools are "Code of Conduct" and user awareness programs. IT is a fecilitator to the HR agenda in this case. Practically in most of the cases HR is accountable for such usages and IT can be the reponsible party to the policy.
<br><br>Cheers<br><br><br><div><span class="gmail_quote">On 10/30/06, <b class="gmail_sendername">Exibar</b> <<a href="mailto:exibar@thelair.com">exibar@thelair.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I'm sorry, but that document outlines HOW Bluecoat can and does block Skype.<br>A packet or protocol anaylizer Proxy will block anything that is NOT<br>conforming HTTP to travel along on port 80. Skype does not conform to HTTP
<br>standards (for one it's encrypted) and BlueCoat will stop it.<br> Yup, you can't be a moron and have every other port under the sun open on<br>your network too....<br><br><br><br>"STEP 4: INSTALL SSL CONTROLS ON THE BLUE COAT SG
<br>The Blue Coat SG appliances managing application service ports for HTTP<br>(80), RTSP (554), MMS<br>(1755), etc. will drop client connections if the packets sent do not conform<br>to the appropriate<br>protocol. When Skype uses port 80, the protocol used is still Skype's
<br>proprietary protocol and does<br>not conform to HTTP and so will be blocked. The Skype application finally<br>attempts to use port<br>443, if the SSL controls are installed (part of SGOS v4.2) these packets<br>will also be dropped as
<br>there is no SSL certificate exchanged between Skype nodes. Therefore, any<br>attempt to establish a<br>Super-node connection through these service ports will be unsuccessful, as<br>the connection is nonconforming to standards."
<br><br><br><br>> -----Original Message-----<br>> From: Tyop? [mailto:<a href="mailto:tyoptyop@gmail.com">tyoptyop@gmail.com</a>]<br>> Sent: Friday, October 27, 2006 2:19 PM<br>> To: Exibar; <a href="mailto:full-disclosure@lists.grok.org.uk">
full-disclosure@lists.grok.org.uk</a><br>> Subject: [inbox] Re: [Full-disclosure] [ Capture Skype trafic ]<br>><br>><br>> On 10/27/06, Exibar <<a href="mailto:exibar@thelair.com">exibar@thelair.com</a>> wrote:
<br>> > From: "Tyop?" <<a href="mailto:tyoptyop@gmail.com">tyoptyop@gmail.com</a>><br>> > > All is in the mail's subject.<br>> > > I need to match this crazy-encrypted-random trafic,
<br>> > > to destroy it (I think I'm not alone to need informations on this<br>> > > product).<br>> > > I've found some work on the BlackHats slides,<br>> > > but skype updates..<br>> > use a packet analyzer proxy.... bluecoat comes to mind as one
<br>> that works<br>> > quite well...<br>><br>> <a href="http://www.bluecoat.com/downloads/whitepapers/BCS_controlling_skype_wp.pdf">http://www.bluecoat.com/downloads/whitepapers/BCS_controlling_skype_wp.pdf
</a><br>> Bluecoat doesn't match the packets, sorry.<br>><br>> quote:<br>> It is also recommended that enterprises block downloads of URLs ending<br>> with "skype.exe". This will prevent new Skype software from being
<br>> downloaded to enterprise machines.<br>><br>> This is very funny. ^-^<br>><br>> --<br>> Tyop?<br>> "Please excuse my english."<br>><br>><br>><br><br>_______________________________________________
<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/">
http://secunia.com/</a><br></blockquote></div><br>