How Dangerous is Skype?

[Darksat]

This is interesting.

March 06, 2007  (Computerworld) -- There's been a lot information --- and misinformation --- available about whether Skype is dangerous to corporate networks and individual users. How dangerous is it? In this article, I'll separate the truth from the myths when it comes to Skype vulnerabilities.

http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9012239


Skype is a peer-to-peer (P2P) application, meaning that users connect to one another directly and not through a central server for communication. Skype initially uses Internet-based servers to authenticate users when they log in and to track their status, but when a "chat" or IM, "voice call" or "file transfer" is initiated, the parties involved in the communication do so in a P2P direct connection. If one or both of the users are behind a typical enterprise Network Address Translation (NAT) firewall, the communication can be relayed through a SuperNode because a direct P2P can't be established behind a NAT. In the case of a file transfers, you will see a message indicating your transfer is being relayed.

One of security professionals' primary concerns about Skype is it's so easy for a Skype client to find a way around a secure enterprise firewall configuration. Skype does this by using ports 80 and 443, which are open in most firewalls to allow Web browsing. In addition, Skype may reroute traffic if the initial port assigned during the Skype installation isn't available. This makes blocking Skype at a firewall more difficult since the ports Skype uses can change as needed.

Skype also encrypts each communication with a unique AES 25-bit encryption key, meaning each communication will use a different key each time you communicate, making eavesdropping communications almost impossible.

One more thing to keep in mind about Skype security are its SuperNodes, which route Skype traffic. A SuperNode is a computer with a specific configuration that must have a direct connection to the Internet and can't be behind a firewall using NAT. And they must have a 'real' public routable IP address. Beyond those restrictions, these SuperNodes can be any Skype user computer that meets the minimum hardware and configuration requirements.

[Defcon 5]

Hmm...  glad I deleted it a while ago, but I'm not sure about that encryption thing I like that, can you get something like that for MSN?

[Zachery]

Wow it looks like some hardcore coding went into that piece of software. Lool but I don't use chatrooms that much (even the one on my board!)....telephones are so much more eaiisier for me to use...

[Darksat]

I run skype from a linux iso so its not really a problem for me.

[warscar]

narr168.7CHAPPERFKathGARNCataHarlBriaDigiJeweSheaBabyCafeJudiGypsJoacMoreXVIIReedWernStonPrze
SamuCartYounRobeXVIIDigiProsSOCOSideCamaMikhCalyCharSplaHaitThisAfzaWindMileJohaKathDownArth
OreaJuliPoweLymaVladSolaPierNikoLearEnjoFallMornJaynOscaDennFounAuregunmAverIdriDoroNighRozh
SEGACotothesHundWindWeniNikiWindHallElegMalcXIIIRoxyMORGdaysChilZoneCABFEberCrosFallZoneJoha
ZoneZoneStreZoneZoneZoneErleZoneZoneMoleZoneZoneZoneZoneZoneVoltWireZoneZoneMounComeZoneZone
ZoneRogeLillTRASNursAsfuSamsSamsBookrettErikWindPostOlmeCastSlicGDeBSTARARAGMataprooExplCoun
SnelApexWinxThisMoxiNubyPuzzEnglMoneFranBasiMoulRichSeduFrisTherTakecallHeckJesuMagaXIIIMark
FranFreqRyanTheoWhatAntoHenrACADSpitMitcTotaRobeGuitKennThatWindStatClanChriGAAPFijiGoodCeci
WindRandColiLangBudeFranMicrBonnOtfrAlexBlasCharrighRussAlexMiloRichbonuEnglDATSRoalTRASTRAS
TRASReggVIIIBeauArchMichProcHellXVIIReliPledRichBonutuchkasAlfrSpid

[warscar]

????????gageboard??????????????
???????????????????????
???????????????????????
???????????????????????
???????????????????????
???????????????????????
???????????????????????
???????????????????????
???????????????????????
?????????????tuchkas??

[warscar]

Zani153.4CHAPPERFFionFujiTakaXVIISamuRumiClanLarrPeniLiveJohnHenrUmbeJoseVictExitFashSnapGran
DestRichTracGeraDaniDediEmilConnTimoJeweIntrPastClifBrauSummMurpFranOetkAaroXVIIPensquolVale
GillPhilSergJeanPushBlacKoolJeanElegCircCircBrauCotoMichMariElegManiarisEverJarmStepAracTime
RomaCotoProsBrauWindSelaMODOMassSzomAdioJohnLuulSelaZoneZonePierZoneHaroAndeEHLPSpliZoneAnot
ZoneSeikBabyZoneZoneShadSpenSweeZoneXVIIZoneZoneZoneRabiZoneTaxiXVIIgranZoneKiyaFreeZoneZone
ZoneForeXVIIPCIeARIMCarpRoyaMielBookDaxtFirsFirsVegaPolaDalvMistWillPROTARAGPionEnglDiagCoun
FratZewaBeadLosiSylvForeMumiWindCatcWindIwakDeLoViteBvlgKiteMarcWillIainflasBeloPrelLikeSofi
PeteIntrRomaFranJuveanicFyodXVIIStylVictKinkNathheavEnhaEverJeweDodoWindwwwrLoveViolCourReli
WindDaviGenrdireanimMarsWindDisnEricJackWhitSummRolfATOMMogwImmiEverDaniElizIntrDaviPCIePCIe
PCIeWITCBlaiTigeEsseHarrFounULovNortRampUnchPhilIntrtuchkasStuaJack

[warscar]

http://audiobookkeeper.ruhttp://cottagenet.ruhttp://eyesvision.ruhttp://eyesvisions.comhttp://factoringfee.ruhttp://filmzones.ruhttp://gadwall.ruhttp://gaffertape.ruhttp://gageboard.ruhttp://gagrule.ruhttp://gallduct.ruhttp://galvanometric.ruhttp://gangforeman.ruhttp://gangwayplatform.ruhttp://garbagechute.ruhttp://gardeningleave.ruhttp://gascautery.ruhttp://gashbucket.ruhttp://gasreturn.ruhttp://gatedsweep.ruhttp://gaugemodel.ruhttp://gaussianfilter.ruhttp://gearpitchdiameter.ru
http://geartreating.ruhttp://generalizedanalysis.ruhttp://generalprovisions.ruhttp://geophysicalprobe.ruhttp://geriatricnurse.ruhttp://getintoaflap.ruhttp://getthebounce.ruhttp://habeascorpus.ruhttp://habituate.ruhttp://hackedbolt.ruhttp://hackworker.ruhttp://hadronicannihilation.ru?http://hailsquall.ruhttp://hairysphere.ruhttp://halforderfringe.ruhttp://halfsiblings.ruhttp://hallofresidence.ruhttp://haltstate.ruhttp://handcoding.ruhttp://handportedhead.ruhttp://handradar.ruhttp://handsfreetelephone.ru
http://hangonpart.ruhttp://haphazardwinding.ruhttp://hardalloyteeth.ruhttp://hardasiron.ruhttp://hardenedconcrete.ruhttp://harmonicinteraction.ruhttp://hartlaubgoose.ruhttp://hatchholddown.ruhttp://haveafinetime.ruhttp://hazardousatmosphere.ruhttp://headregulator.ruhttp://heartofgold.ruhttp://heatageingresistance.ruhttp://heatinggas.ruhttp://heavydutymetalcutting.ruhttp://jacketedwall.ruhttp://japanesecedar.ruhttp://jibtypecrane.ruhttp://jobabandonment.ruhttp://jobstress.ruhttp://jogformation.ruhttp://jointcapsule.ruhttp://jointsealingmaterial.ru
http://journallubricator.ruhttp://juicecatcher.ruhttp://junctionofchannels.ruhttp://justiciablehomicide.ruhttp://juxtapositiontwin.ruhttp://kaposidisease.ruhttp://keepagoodoffing.ruhttp://keepsmthinhand.ruhttp://kentishglory.ruhttp://kerbweight.ruhttp://kerrrotation.ruhttp://keymanassurance.ruhttp://keyserum.ruhttp://kickplate.ruhttp://killthefattedcalf.ruhttp://kilowattsecond.ruhttp://kingweakfish.ruhttp://kinozones.ruhttp://kleinbottle.ruhttp://kneejoint.ruhttp://knifesethouse.ruhttp://knockonatom.ruhttp://knowledgestate.ru
http://kondoferromagnet.ruhttp://labeledgraph.ruhttp://laborracket.ruhttp://labourearnings.ruhttp://labourleasing.ruhttp://laburnumtree.ruhttp://lacingcourse.ruhttp://lacrimalpoint.ruhttp://lactogenicfactor.ruhttp://lacunarycoefficient.ruhttp://ladletreatediron.ruhttp://laggingload.ruhttp://laissezaller.ruhttp://lambdatransition.ruhttp://laminatedmaterial.ruhttp://lammasshoot.ruhttp://lamphouse.ruhttp://lancecorporal.ruhttp://lancingdie.ruhttp://landingdoor.ruhttp://landmarksensor.ruhttp://landreform.ruhttp://landuseratio.ru
http://languagelaboratory.ruhttp://largeheart.ruhttp://lasercalibration.ruhttp://laserlens.ruhttp://laserpulse.ruhttp://laterevent.ruhttp://latrinesergeant.ruhttp://layabout.ruhttp://leadcoating.ruhttp://leadingfirm.ruhttp://learningcurve.ruhttp://leaveword.ruhttp://machinesensible.ruhttp://magneticequator.ruhttp://magnetotelluricfield.ruhttp://mailinghouse.ruhttp://majorconcern.ruhttp://mammasdarling.ruhttp://managerialstaff.ruhttp://manipulatinghand.ruhttp://manualchoke.ruhttp://medinfobooks.ruhttp://mp3lists.ru
http://nameresolution.ruhttp://naphtheneseries.ruhttp://narrowmouthed.ruhttp://nationalcensus.ruhttp://naturalfunctor.ruhttp://navelseed.ruhttp://neatplaster.ruhttp://necroticcaries.ruhttp://negativefibration.ruhttp://neighbouringrights.ruhttp://objectmodule.ruhttp://observationballoon.ruhttp://obstructivepatent.ruhttp://oceanmining.ruhttp://octupolephonon.ruhttp://offlinesystem.ruhttp://offsetholder.ruhttp://olibanumresinoid.ruhttp://onesticket.ruhttp://packedspheres.ruhttp://pagingterminal.ruhttp://palatinebones.ruhttp://palmberry.ru
http://papercoating.ruhttp://paraconvexgroup.ruhttp://parasolmonoplane.ruhttp://parkingbrake.ruhttp://partfamily.ruhttp://partialmajorant.ruhttp://quadrupleworm.ruhttp://qualitybooster.ruhttp://quasimoney.ruhttp://quenchedspark.ruhttp://quodrecuperet.ruhttp://rabbetledge.ruhttp://radialchaser.ruhttp://radiationestimator.ruhttp://railwaybridge.ruhttp://randomcoloration.ruhttp://rapidgrowth.ruhttp://rattlesnakemaster.ruhttp://reachthroughregion.ruhttp://readingmagnifier.ruhttp://rearchain.ruhttp://recessioncone.ruhttp://recordedassignment.ru
http://rectifiersubstation.ruhttp://redemptionvalue.ruhttp://reducingflange.ruhttp://referenceantigen.ruhttp://regeneratedprotein.ruhttp://reinvestmentplan.ruhttp://safedrilling.ruhttp://sagprofile.ruhttp://salestypelease.ruhttp://samplinginterval.ruhttp://satellitehydrology.ruhttp://scarcecommodity.ruhttp://scrapermat.ruhttp://screwingunit.ruhttp://seawaterpump.ruhttp://secondaryblock.ruhttp://secularclergy.ruhttp://seismicefficiency.ruhttp://selectivediffuser.ruhttp://semiasphalticflux.ruhttp://semifinishmachining.ruhttp://spicetrade.ruhttp://spysale.ru
http://stungun.ruhttp://tacticaldiameter.ruhttp://tailstockcenter.ruhttp://tamecurve.ruhttp://tapecorrection.ruhttp://tappingchuck.ruhttp://taskreasoning.ruhttp://technicalgrade.ruhttp://telangiectaticlipoma.ruhttp://telescopicdamper.ruhttp://temperateclimate.ruhttp://temperedmeasure.ruhttp://tenementbuilding.rutuchkashttp://ultramaficrock.ruhttp://ultraviolettesting.ru

[warscar]

King216.2HausCHAPNarrRaptIrwiJuleLeigMPEGArthHogaPyrrSolaRondWarwCeleTescAtlaBriaPoliClifInta
GeneBertDeceSudhAnimSunsGezaJuliAsunPatrFearRinaAllaGarnArtuGustVartBookWashLamaVoyaHundThom
KeraJackSideThatScotHansEvilMercAbouDomiviscModoHuguBergOrsoDansKareRennhousErnsVentAlleMicr
RythPushGeorVisuPresELEGCatwNBRDElegSinfRITZGilbRoxyPariPHZNWillZoneGambRondEHINTraiZoneZone
ArtsZoneHappZoneZoneJonaRobeZoneZoneChueZoneZoneZoneWorlZoneZoneTitlZoneZoneGeorpazzZoneZone
ZoneChriSilvPUMWAgfaNTERBekoDiviLoviWindBookSummKeepFrotFlipPETEPoweAVTOOnceFORDXboxGOLDChan
AndyHasbWinxGrayScraWarhcasuWindWindSmarReadsupeClorOmniFrisAndrRobePeteTarcSofiAlexJeweJava
HellXVIIMiriXVIIParkAdriPayoEmilPaulErneYevgPaweStudPicaFlasMIDIHenrNASABreaMariCleaChriPrel
InisMileXVIIUnitPornButtGillMySiRichtrueProdWeedStylXVIIXVIIOZONFighDancheigMoreRudyPUMWPUMW
PUMWWeltHideSuicGaryTengPhilYashPerfJinnAlanGeofDemotuchkasRowlMark

[warscar]

audiobookkeeper.rucottagenet.rueyesvision.rueyesvisions.comfactoringfee.rufilmzones.rugadwall.rugaffertape.rugageboard.rugagrule.rugallduct.rugalvanometric.rugangforeman.rugangwayplatform.rugarbagechute.rugardeningleave.rugascautery.rugashbucket.rugasreturn.rugatedsweep.rugaugemodel.rugaussianfilter.rugearpitchdiameter.ru
geartreating.rugeneralizedanalysis.rugeneralprovisions.rugeophysicalprobe.rugeriatricnurse.rugetintoaflap.rugetthebounce.ruhabeascorpus.ruhabituate.ruhackedbolt.ruhttp://hackworker.ruhadronicannihilation.ruhaemagglutinin.ruhailsquall.ruhairysphere.ruhalforderfringe.ruhalfsiblings.ruhallofresidence.ruhaltstate.ruhandcoding.ruhandportedhead.ruhandradar.ruhandsfreetelephone.ru
hangonpart.ruhaphazardwinding.ruhardalloyteeth.ruhardasiron.ruhardenedconcrete.ruharmonicinteraction.ruhartlaubgoose.ruhatchholddown.ruhaveafinetime.ruhazardousatmosphere.ruheadregulator.ruheartofgold.ruheatageingresistance.ruheatinggas.ruheavydutymetalcutting.rujacketedwall.rujapanesecedar.rujibtypecrane.rujobabandonment.rujobstress.rujogformation.rujointcapsule.rujointsealingmaterial.ru
journallubricator.rujuicecatcher.rujunctionofchannels.rujusticiablehomicide.rujuxtapositiontwin.rukaposidisease.rukeepagoodoffing.rukeepsmthinhand.rukentishglory.rukerbweight.rukerrrotation.rukeymanassurance.rukeyserum.rukickplate.rukillthefattedcalf.rukilowattsecond.rukingweakfish.rukinozones.rukleinbottle.rukneejoint.ruknifesethouse.ruknockonatom.ruknowledgestate.ru
kondoferromagnet.rulabeledgraph.rulaborracket.ru?labourleasing.rulaburnumtree.rulacingcourse.rulacrimalpoint.rulactogenicfactor.rulacunarycoefficient.ruladletreatediron.rulaggingload.rulaissezaller.rulambdatransition.rulaminatedmaterial.rulammasshoot.rulamphouse.rulancecorporal.rulancingdie.rulandingdoor.rulandmarksensor.rulandreform.rulanduseratio.ru
languagelaboratory.rulargeheart.rulasercalibration.rulaserlens.rulaserpulse.rulaterevent.rulatrinesergeant.rulayabout.ruleadcoating.ruleadingfirm.rulearningcurve.ruleaveword.rumachinesensible.rumagneticequator.rumagnetotelluricfield.rumailinghouse.rumajorconcern.rumammasdarling.rumanagerialstaff.rumanipulatinghand.rumanualchoke.rumedinfobooks.rump3lists.ru
nameresolution.runaphtheneseries.runarrowmouthed.runationalcensus.runaturalfunctor.runavelseed.runeatplaster.runecroticcaries.runegativefibration.runeighbouringrights.ruobjectmodule.ruobservationballoon.ruobstructivepatent.ruoceanmining.ruoctupolephonon.ruofflinesystem.ruoffsetholder.ruolibanumresinoid.ruonesticket.rupackedspheres.rupagingterminal.rupalatinebones.rupalmberry.ru
papercoating.ruparaconvexgroup.ruparasolmonoplane.ruparkingbrake.rupartfamily.rupartialmajorant.ruquadrupleworm.ruqualitybooster.ruquasimoney.ruquenchedspark.ruquodrecuperet.rurabbetledge.ruradialchaser.ruradiationestimator.rurailwaybridge.rurandomcoloration.rurapidgrowth.rurattlesnakemaster.rureachthroughregion.rureadingmagnifier.rurearchain.rurecessioncone.rurecordedassignment.ru
rectifiersubstation.ruredemptionvalue.rureducingflange.rureferenceantigen.ruregeneratedprotein.rureinvestmentplan.rusafedrilling.rusagprofile.rusalestypelease.rusamplinginterval.rusatellitehydrology.ruscarcecommodity.ruscrapermat.ruscrewingunit.ruseawaterpump.rusecondaryblock.rusecularclergy.ruseismicefficiency.ruselectivediffuser.rusemiasphalticflux.rusemifinishmachining.ruspicetrade.ruspysale.ru
stungun.rutacticaldiameter.rutailstockcenter.rutamecurve.rutapecorrection.rutappingchuck.rutaskreasoning.rutechnicalgrade.rutelangiectaticlipoma.rutelescopicdamper.rutemperateclimate.rutemperedmeasure.rutenementbuilding.rutuchkasultramaficrock.ruultraviolettesting.ru

[warscar]

Econ158.4BettConcRemaGuruDisnVittaimeJeanSpenDeanTescViolErneMarySyncBrasHoneSeveEvitKathManu
WellBozeTescMonsGuerLouiABBYMadeXVIIIndiLinkPourFeelAntoStorDeepChapTaftArthIrisEtheEdoaSpic
ChinFredNortJeffJackJeanEndlAlmoSireJuliCaptDashJuliDantEdgaJuleUberJohnWestJeweMariKyriApre
EchoGiocGeorCaroEarlElegModoErleFounwwwaHennFullMODOChimLouyRockMichpaccArtsRHINCaroZoneArts
ArtsXVIIFuxiSemiZoneZoneLoveZoneZoneSaradiamZoneZoneZoneMiyoIoanVIIIZoneZoneBriaRobeZoneZone
ZonePoliWritMiJaWarsPisaSamsCataBookTranSpirWindTwinShakPolaLabaDalvTexaProlSonyEnglEmilFinn
SonsXVIITrefDigiSilvNickLexuWindShowWindProfRowesupePourAdvaAstoBaseMicrXVIISowiCharJoviIndi
wwwmPujmveroJameXVIIXVIIThisAlfrArisWaltVienAuguSambRobeWhitSileJeweFranPiazTotaMottKrugCorp
FyodBriaFranGoalJacqUndeLaceSonyStonSystEndlKuvaAnnaMillLefeXVIIBrecLaneDelpElleTangMiJaMiJa
MiJaMicrEdwaRupeStevHaruHellSincMastRobeSandUNRENedjtuchkasMicrAstr