It
became apparent that Packet-layer filter firewalls that could simply open or close a port
were worthless against the threat of an exploit that packages its traffic over a legitimately
allowed port such as HTTP.
HTTP filtering and securing, fortunately, is something that ISA Server does extremely well,
and it offers a large number of customization options that enable administrators to have
control over the web server??™s traffic and security.
383 Publishing and Customizing Web Server Publishing Rules
Securing Encrypted (Secure Sockets Layer) Web Traffic
As the World Wide Web was maturing, organizations realized that if they encrypted the
HTTP packets that were transmitted between a website and a client, it would make them
virtually unreadable to anyone who might intercept those packets. This led to the adoption
of Secure Sockets Layer (SSL) encryption for HTTP traffic.
Of course, encrypted packets also create somewhat of a dilemma from an intrusion detection
and analysis perspective because it is impossible to read the contents of the packet to
determine what it is trying to do. Indeed, many HTTP exploits in the wild today can be
transmitted over secure SSL-encrypted channels.
Pages:
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625