Questions Concerning iChain
Articles and Tips: qna
01 May 2002
Q.
I am in an iChain mood and have a few questions for you.
Can iChain run any web surfing control software such as CyberPatrol or SurfWatch?
Can iChain perform incoming URL scanning and to reject URLs which have embedded double dot,% character substitution, etc.?
How does the Apache webserver in NetWare 6 protect itself against hack attempts via URL? I found an entry in the config files to limit the total URL length to prevent buffer overflow attacks, but so far I haven't found anything about front-end URL scanning. etc.
Itching for iChain
A.
Dear Itching: In answer to your questions:
Can iChain run any web surfing control software such as CyberPatrol or SurfWatch? No. iChain is designed to control access into the private network.
Can iChain do incoming URL scanning, to reject URLs which have embedded double dot,% character substitution etc.? First, think of what iChain is--it is a 3A appliance. So only those who have rights can access managed URLs through iChain. Everything else is ignored. So I guess the answer would be yes it does watch what comes in and drops what is not controlled through iChain.
How does the Apache Webserver in NetWare 6 protect itself against hack attempts via URL? It works just like Apache on any other supported platform. You as the administrator define the level of accessibility by controlling access to various areas of the system through directives.
* Originally published in Novell AppNotes
Disclaimer
The origin of this information may be internal or external to Novell. While Novell makes all reasonable efforts to verify this information, Novell does not make explicit or implied claims to its validity.