OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • Blocking WEBDAV?
« previous next »
  • Print
Pages: [1]

Author Topic: Blocking WEBDAV?  (Read 3600 times)

StP

  • Jr. Member
  • **
  • Posts: 58
  • Karma: 2
    • View Profile
Blocking WEBDAV?
« on: August 07, 2017, 02:20:35 pm »
According to this

http://borncity.com/win/2017/08/07/us-cert-warns-microsoft-windows-lnk-vulnerability/

we should block outgoing SMB and WEBDAV traffic to close some attack vectors which can be used by the vulnerability.

How to block WEBDAV in OPNsense?

Stefan
Logged

fabian

  • Hero Member
  • *****
  • Posts: 2768
  • Karma: 199
  • OPNsense Contributor (Language, VPN, Proxy, etc.)
    • View Profile
    • Personal Homepage
Re: Blocking WEBDAV?
« Reply #1 on: August 07, 2017, 05:33:50 pm »
create a custom acl with the "normal" http verbs (GET, POST, PUT, DELETE, HEAD, PATCH, PUT) and block all which are not using them.

http://www.squid-cache.org/Doc/config/acl/
-> ctrl + f -> method
Logged

StP

  • Jr. Member
  • **
  • Posts: 58
  • Karma: 2
    • View Profile
Re: Blocking WEBDAV?
« Reply #2 on: August 08, 2017, 09:13:29 am »
Thanks Fabian!

To be honest, I have never before used the Web Proxy. At a first glance I think I have to learn a lot of the basics first before I can use it. Will take some time...

Thanks anyways
  Stefan

Logged

  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 17.7 Legacy Series »
  • Blocking WEBDAV?
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy
    | XHTML | RSS | WAP2