Re: [PLUG] weak linux firewall?

Mike Leone on Mon, 1 Apr 2002 17:20:13 +0200

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] weak linux firewall?

From: "Mike Leone" <turgon@mike-leone.com>

To: <plug@lists.phillylinux.org>

Subject: Re: [PLUG] weak linux firewall?

Date: Mon, 1 Apr 2002 10:10:49 -0500

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

I've heard of this. ISTR it's a Javascript vulnerability, that allows a web page to access the local HD. 1st thing to do is always patch (actually, that's good advice regardless of OS). Do the Win2K SP2; then the post-SP2 Security Rollup; then the other critical patches. In that order, and with reboots between. ----- Original Message ----- From: "Samantha Samuel" <ssamuel@taz.cs.wcupa.edu> To: "Philadelphia Linux User's Group" <plug@lists.phillylinux.org> Sent: Monday, April 01, 2002 9:54 AM Subject: [PLUG] weak linux firewall? > For reasons that are not important I have win2k on a partition. My > firewall is a linux box that has only the following ports open. > > Port State Service > 21/tcp open ftp > 22/tcp open ssh > 80/tcp open http > 139/tcp open netbios-ssn > 515/tcp open printer > 6000/tcp open X11 > 6004/tcp open X11:4 > > When surfing the internet last night, I saw an ad that claimed my pc was > insecure and had a snapshot of my hd, that had a pic of my folders and the > size of my partition. Now this worries me. I know it was a pic of my comp, > and not some generic pc because of this one folder I had. > > Does anyone have any thoughts on how someone could have gotten past the > firewall and peeked into my machine? > > Thanks. > -- > Samantha > ------- > Real programmers do not comment their code. If it was hard to write, it > should be hard to understand. > > http://taz.cs.wcupa.edu/~ssamuel > > > > ______________________________________________________________________ > Philadelphia Linux Users Group - http://www.phillylinux.org > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug > ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug

References:

[PLUG] weak linux firewall?
From: Samantha Samuel <ssamuel@taz.cs.wcupa.edu>

Prev by Date: [PLUG] weak linux firewall?

Next by Date: Re: [PLUG] weak linux firewall?

Previous by thread: [PLUG] weak linux firewall?

Next by thread: Re: [PLUG] weak linux firewall?

Index(es):

Date

Thread