[Planetlab-users] SMTP tunneled over HTTP - legitimate?
Markus Iturriaga
miturria at cs.utk.edu
Thu May 26 13:23:33 EDT 2005
Hi - our network admins just notified me that their intrusion
prevention system is blocking some traffic to pl1.cs.utk.edu because it
matches a well-known exploit involving tunneling SMTP over HTTP. The
relevant CERT advisories are here:
http://www.kb.cert.org/vuls/id/150227
http://www.kb.cert.org/vuls/id/868219
If this is legitimate traffic generated by one of the researchers in
PL, I can ask them to stop blocking it. Please contact me directly at
the email address below if this is part of your research/use of the
planetlab nodes.
Thanks,
Markus
---
Markus A. Iturriaga Woelfel, SysAdmin
Department of Computer Science
University of Tennessee, Knoxville
miturria at cs.utk.edu / (865) 974-3837
More information about the Users
mailing list