Windows Live
Facebook
Twitter
Linkedin
Digg it
Yahoo
Delicious
StumbleUpon
Yammer
Reddit
Technorati
FriendFeed
Email???? ID: 320027 - ????? ???????: 18 ????? 2011 - ??????: 3.0 ????? ?? Cisco PIX ?? Cisco ASA ???????? ?? ???? ?-??? ????? ??????? ???? ?? ????
???????????? ???? ??? ??????? ?? ?? ???? ??????? ???????? ?? ?? ???? ?? ??? ?? ???? ??? ???????? ?? ??????? ???????? ?? ??? ???? ?? ??? ???? ?????? ??? ?? ???? ????? ?????? ?? ?? ???? ?? ??? ?? ?????????? ?? ????? ?? ???? ???.. ???? ???? ?? ?? ?? ???????? ????, ?? ??????? ???? ??? ?? ?? ???? ????? ?????? ??? ?? ???? ?????? ??????????? ???? ?? ?????? ??????? ?? ????????? ????.. ??? ?? ?? ???? ?????? ?? ??????????? ???? ???, ?? ???????? ?? ????? ??? ??? ???? ?? ??? ??? ?? ???? ???????? ???????? ????.. ?? ????? ????????? ?? ?? ???? ????? ??????? ?? ????? ?? ???? ??:
?????? ?????? ????? ?????? ??? ?? ???? ??:
220*******************************************************0*2******0*********************** ???? ??????? ?? ???, ????? Cisco ??? ?????? ?? ????:2002 ******* 2 *** 0 * 00 PIX ?? ASA ?? ?????? ???????: 220 SMTP/cmap_________________________________________ ????? HTTP://www.Cisco.com/en/US/tech/tk331/tk897/tsd_technology_support_sub-protocol_home.HTML
(http://www.cisco.com/en/US/tech/tk331/tk897/tsd_technology_support_sub-protocol_home.html)
HTTP://www.Cisco.com/en/US/Products/hw/vpndevc/ps2030/products_tech_note09186a00800b2ecb.shtml
(http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800b2ecb.shtml)
???:??? ???? ??? PIX ?? ASA ?? ???? ??? ESMTP ????? ???????, ?? ???? ?? ???? ??? ??? ????? ?? flow ???? ?? ??? ?????? ???? ?? ??? Mailguard ?????? ?? ??? ????? ??? ??, 25 ????? ?? ??? ??? ?????? ???? ??????? ???? ?? ??? ?? ???? ?? ??? ????fixup ????????? smtp????, ????? ??? ?? ???? ??? ?? ????? ???? ?? ?? ?????? ??????? ?? ???????:Cisco PIX ?? Cisco ASA ???????, besides ???? ?? ???? ?? ?? ???? ?? ???? ??? ???????? ???????? ?????? SMTP ???????? ???????? ??? ?? ?? ???????? ?????? ???? ?????? ????? ??? SMTP ???????? ???????? ???????? ?????????? ?? ???? ????? ??:
???????? ??????? ?? ??? "???? ???????" ??? ??? ???????? ??? ???? ?? ????? ???????????????:?? ?????? ?????????????? ???????????? ?? ?????????????? ?????????? ???? ????? attack ???? ?? ??? ??? ???????? ?? ???? ??????? ????? ???? ????????? ??? ?? ???? ??? ?? ?? ???? ?????? ?? ??????? ???? ???? ??? ????? ?? ??????? ?????? ?? ??? ??? ???? ?? ???? ????? ?? ????? ??? ?? ???? ?????? ?? ??????????? ?? ????.. ?? ???? ?????? ?? ???? ????? ?? ????? ?? ????? ????.. ???:??? ???????? ???? ???????? ?? ?????????????? ???????????? ?? ?????????????? ?????????? ???? ????? ??????? ??? ???????? ??????? ?? ????? ?? ???? ???????? ?? attack ????? ?? ????? ??? ??? ???? ?? ??? ??????? ???? ??? ??? ???? ???? ?? ?? ???? ??????? ????? ????, ???? ???? ???????? ?? ??? ???????, ??????? ???? ?????????? ???? ??????? ?? ?????? ?? ?? ???? ?? ??? Mailguard ?????? ??? ?? PIX ?? ASA ????????? ???????:If you have an ESMTP server behind the PIX or ASA, you may have to turn off the Mailguard feature to make it possible for mail to correctly flow. If you use the Telnet command to port 25, this may not work with thefixup protocol smtpcommand, and this is more noticeable with a Telnet client that performs character mode. To turn off the Mailguard feature of the PIX or ASA firewall:
???? ???????The PIX or ASA Software Mailguard feature (also called Mailhost in early versions) filters Simple Mail Transfer Protocol (SMTP) traffic. For PIX or ASA Software versions 4.0 and 4.1, themailhostcommand is used to configure Mailguard. In PIX or ASA Software version 4.2 and later, thefixup
protocol smtp 25command is used. ???:You must also have static IP address assignments and conduit statements for your mail server. When Mailguard is configured, Mailguard allows only the seven SMTP minimum-required commands as described in request for comment (RFC) 821, section 4.5.1. These seven required commands are the following: HELO Other commands, such as KILL and WIZ are not forwarded to the mail server by the PIX or ASA firewall. Early versions of the PIX or ASA firewall return an "OK" response, even to commands that are blocked. This is intended to prevent an attacker from the knowledge that the commands have been blocked.RCPT DATA RSET NOOP QUIT To view RFC 821, visit the following RFC Web site: http://www.faqs.org/rfcs/rfc821.html
(http://www.faqs.org/rfcs/rfc821.html)
All other commands are rejected with the "500 Command
unrecognized" response.On Cisco PIX and ASA firewalls with firmware versions 5.1 and later, thefixup protocol smtpcommand changes the characters in the SMTP banner to asterisks except for the "2", "0", "0 " characters. Carriage return (CR) and linefeed (LF) characters are ignored. In version 4.4, all characters in the SMTP banner are converted to asterisks. Test Mailguard for proper functionBecause the Mailguard feature may return an "OK" response to all commands, it may be hard to determine whether it is active. To determine whether the Mailguard feature is blocking commands that are not valid, follow these steps.???:The following steps are based on PIX or ASA software version 4.0 and 4.1. To test later versions of PIX or ASA software (version 4.2 and later), use thefixup protocol smtp 25command and the appropriatestatic, ??conduitstatements for your mail server. With Mailguard turned off
With Mailguard turned on
???????? ??? ??, PIX ?? ASA ??????? ??? ???? ??????? ?? ???? ?? ??????? ?? ???????? ????? ????? ????? ????? ?? ?????? ???? ?? ??? ???????, ????? ????, ?? ????? ???? ???? ??? ?? ????? ????? ?? ????????? ?? ???? ??? ???????? ??????? ?? ??? ????? Cisco ??? ???? ?? ????: HTTP://www.Cisco.com/univercd/cc/td/doc/Product/iaabu/pix/pix_60/Config/Commands.htm
(http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_60/config/commands.htm)
Cisco PIX ?? ASA ??????? ?? ???????? ???? ???? ?? ???? ??? ???????? ??????? ?? ??? ????? ????? Cisco ??? ?????? ?? ????:HTTP://www.Cisco.com/univercd/cc/td/doc/Product/iaabu/pix/pix_v52/Config/Commands.htm#xtocid1604922
(http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v52/config/commands.htm#xtocid1604922)
HTTP://www.Cisco.com/en/US/Products/sw/secursw/ps2120/products_installation_and_configuration_guides_list.HTML
(http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_installation_and_configuration_guides_list.html)
HTTP://www.Cisco.com/en/US/Products/hw/vpndevc/ps2030/products_tech_note09186a00800b2ecb.shtml
(http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800b2ecb.shtml)
SMTP ???????? ???????? ?? ??? ?? ???????? ???????? ?? ???? ??? ???? ??????? ?? ??? ????? ??? ?????? ?? ????: HTTP://www.watchguard.com
(http://www.watchguard.com)
HTTP://www.checkpoint.com
(http://www.checkpoint.com)
HTTP://www.Symantec.com/Business/INDEX.jsp
(http://www.symantec.com/business/index.jsp)
?? ?????-???? ?????? Microsoft ?? ???????? ???????? ?????? ??????? ??? ?? ??? ????? ?? ???? ????? ???? ??.. Microsoft ?? ???????? ?? ???????? ?? ??????????? ?? ???? ??? ??? ?????? ???? ???? ??, ????? ?? ??????..?????? ?????? ???? ??? ???? ?????? ???? ?? ??? Microsoft ???? ?????-???? ?????? ??????? ?????? ????? ??.. ?? ?????? ??????? ???? ???? ????? ????? ?? ??? ???? ??..
Microsoft ?? ?????-???? ?????? ??????? ?? ??? ???? ?? ??? ?????? ???? ????..???? ???? ???? ??:
 ???? ?????? ??????????????????: ?? ???? ?? ???? ??????? ?? ????? ?? Microsoft ????-?????? ?????????? ?????? ?????? ???? ??? ??. Microsoft ???? ??? ????-???????? ?? ????-???????? ????? ?????? ?? ???? ???????? ???? ?? ???? ????? ????? ??? ?? ??? ?????? ?? ???? ???? ???? ??? ????? ??. ???????, ????-???????? ???? ????? ???? ???? ???? ???. ?????, ????????, ?????-???? ?? ??????? ?? ???????? ?? ???? ???, ???? ?? ??? ?????? ???? ???? ??? ????? ??? ?? ???? ??. Microsoft ??????? ??? ???? ?? ?????? ?? ??????????, ????????? ?? ??? ?????? ?? ???? ????? ?? ???? ???????? ?? ??? ???? ????? ?? ??? ????????? ???? ??. Microsoft ????-?????? ?????????? ?? ????? ?????? ?? ?? ??? ??. ?????????? ?? ??????? ????????? ??????? ??:320027
(http://support.microsoft.com/kb/320027/en-us/
)
| ???? ?????? ???? ?????? ??????
????????? ?????? ??????? ???????? ??????
|
????? ?? ???? ????
