Re: Securing socket server

From: David Sworder (GilGrissom_at_CSILasVegas.com)
Date: 04/07/04

Next message: Chris A. R.: "Re: I've Had Enough"
Previous message: Peder Y: "LB_SETITEMHEIGHT example message"
In reply to: Ignacio Machin \( .NET/ C# MVP \): "Re: Securing socket server"
Next in thread: Juan: "Re: Securing socket server"
Reply: Juan: "Re: Securing socket server"
Messages sorted by: [ date ] [ thread ]

Date: Wed, 7 Apr 2004 16:31:30 -0700

Yes, and in addition, maintain a blacklist. If a particular client IP
address trys to execute an invalid command or tries to connect multiple
times simultaneously [in an attempt to overwhelm your system], drop the
connection and store that IP address in a Hashtable somewhere so that all
future connection attempts from that IP will be dropped.

"Ignacio Machin ( .NET/ C# MVP )" <ignacio.machin AT dot.state.fl.us> wrote
in message news:en5bauNHEHA.548@TK2MSFTNGP09.phx.gbl...
> HI Juan,
>
> Always authenticate the client first, and if possible try to restrict the
> IP sources other than that there is nothing much you can do to avoid a
> hacker to connect to your server.
> You can use a couple of techniques to try to minimize the possible
> ocurrence of a break in, for example disconnect the client if an unknow
> command is received (I do this) or if you know that no more than a certain
> numbers of clients will connect at the same time you can control how
manies
> connection are live at the same time. Also if the protocol you defined is
> text in the ruotine where you get the command check if the receiving
string
> is sending a command bigger than your limit, if so drop the conneciton.
>
> Hope this help,
>
> --
> Ignacio Machin,
> ignacio.machin AT dot.state.fl.us
> Florida Department Of Transportation
>
> "Juan" <juan_mauricio_lopez@ANTISPAMhotmail.com> wrote in message
> news:eoj6HINHEHA.3952@TK2MSFTNGP10.phx.gbl...
> > Where can I find information on how to secure a socket server? I'd like
to
> > implement the necessary measures to avoid hackers attacks and to
> > authenticate the clients...
> >
> > thanks,
> > Juan.
> >
> >
>
>

Next message: Chris A. R.: "Re: I've Had Enough"
Previous message: Peder Y: "LB_SETITEMHEIGHT example message"
In reply to: Ignacio Machin \( .NET/ C# MVP \): "Re: Securing socket server"
Next in thread: Juan: "Re: Securing socket server"
Reply: Juan: "Re: Securing socket server"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

The remote peer is no longer responding
... " Secure VPN connection terminated locally by the Client. ... RECEIVING <<< ISAKMP OAK AG, VID, VID, KE, ID, ... Crypto Active IKE SA, ...
(comp.dcom.sys.cisco)
Re: OT: FTP probs
... 425 Could not open data connection to port 46289: ... This is controlled by the client. ... Unix clients can be (passv command?). ...
(uk.rec.motorcycles)
RE: Need Help Understanding PASV Use in Windows Server FTP Client
... Command connection ... The PASV mode enabled in FTP client enables the data connection to be ... sends the PASV command to the command port on the server. ...
(microsoft.public.windows.server.networking)
Re: Securing socket server
... If a particular client IP ... > address trys to execute an invalid command or tries to connect multiple ... > future connection attempts from that IP will be dropped. ... >> HI Juan, ...
(microsoft.public.dotnet.languages.csharp)
[REVS] Backdoor Spotcom Analysis
... Spotcom is a backdoor client application that allows a hacker to control ... The server IP address is hard-coded in ... msrsvp.exe accepts a couple of command line arguments. ... the packet payload. ...
(Securiteam)