[Dshield] Question on Skype

John B. Holmblad jholmblad at aol.com
Sat Feb 18 23:41:44 GMT 2006


here is a not-too-old analysis of how the Skype protocol/service 
operates based on some Ethereal based sleuthing  by the researchers who 
published this paper:


I have found that if all you require is outbound call origination then 
you can still use the Skype service with a firewall that blocks all 
inbound TCP/UDP. Furthermore, if you purchase the Skypeout prepaid 
service, then you can make calls to the traditional telephone networks 
and not have to be concerned about becoming a supernode. It also works 
just fine over WIFI and I have tested it on a PDA with an 802.11 
interface. Netgear will soon have a skype VOWIFI handset.  Here is the 
url to a www page at the Netgear www site on the product:


Best Regards,


John Holmblad


Televerage International



(H) 703 620 0672

(M) 703 407 2278

(F)  703 620 5388


primary email address:  jholmblad at aol.com

backup email address:  jholmblad at verizon.net


www page for texting:   www.vtext.com/users/jholmblad

text email address:        jholmblad at vtext.com

Kenton Smith wrote:
> OK, teminology aside, I new I had read something
> recently that had an excellent summary of the
> implications of using Skype, including security. P2P
> is an issue he lists in there.
> "Like KaZaA, Skype is based on peer-to-peer
> technology: instead transmitting all voice calls
> through a central server, as Vonage does, Skype
> clients seek out and find other Skype clients, then
> build from these connections a network that can be
> used to search for other users and send them
> messages."
> and
> "Third, because Skype is mostly a peer-to-peer system,
> the overall security can be affected by third parties
> that are in the network (but that  are unknown to
> those in a particular phone conversation)."
> Entire paper is here:
> http://www.tacticaltech.org/files/Skype_Security.pdf
> It addresses a number of issues surrounding Skype
> security.
> Kenton
> --- Valdis.Kletnieks at vt.edu wrote:
>> On Fri, 17 Feb 2006 12:02:59 EST, Kenton Smith said:
>>> My concern with Skype is that it is a P2P
>> technology.
>>> As far as I know that means that your machine
>> could be
>>> being used as a node in the network even if you
>> aren't
>>> using it.
>> P2P simply means 'Peer To Peer' - meaning that the
>> machines that
>> want to talk do so directly, rather than the more
>> usual 'client server'
>> model (where if 2 arbitrary machines wanted to
>> communicate, they'd do
>> so by sending to a central server, which would then
>> forward to the other
>> machine).
> __________________________________________________________ 
> Find your next car at http://autos.yahoo.ca
> _________________________________________
> Learn about Intrusion Detection in Depth from the comfort of your own couch:
> https://www.sans.org/athome/details.php?id=1341&d=1
> _______________________________________________
> send all posts to list at lists.dshield.org
> To change your subscription options (or unsubscribe), see: http://www.dshield.org/mailman/listinfo/list

More information about the list mailing list