Re: [PLUG] weak linux firewall?

Dan Eunson on Fri, 5 Apr 2002 18:20:16 +0200

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] weak linux firewall?

From: "Dan Eunson" <daneunson@eunson.com>

To: <plug@lists.phillylinux.org>, "Samantha Samuel" <ssamuel@taz.cs.wcupa.edu>

Subject: Re: [PLUG] weak linux firewall?

Date: Mon, 1 Apr 2002 15:21:48 -0000

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

This might just be a hand quicker than the eye cheap marketing ploy, I've seen one similar before. The html below will do basically the same thing (only works in IE) By itself, it's not a problem, but you need to watch out for the cross site scripting thing where they can access your stuff through use of the frames. With all the problems with IE, you may want to consider Netscape when in Windows (6.2 version is much improved) Unless you have a definite need to netbios-ssn (139) to be open on your firewall, I'd close that also. <html> <iframe WIDTH=* HEIGHT=250 src="http://www.cnn.com"; ></frame> <iframe WIDTH=* HEIGHT=250 src="file://c:\"></frame> </html> Samantha Samuel <ssamuel@taz.cs.wcupa.edu> said: > For reasons that are not important I have win2k on a partition. My > firewall is a linux box that has only the following ports open. > > Port State Service > 21/tcp open ftp > 22/tcp open ssh > 80/tcp open http > 139/tcp open netbios-ssn > 515/tcp open printer > 6000/tcp open X11 > 6004/tcp open X11:4 > > When surfing the internet last night, I saw an ad that claimed my pc was > insecure and had a snapshot of my hd, that had a pic of my folders and the > size of my partition. Now this worries me. I know it was a pic of my comp, > and not some generic pc because of this one folder I had. > > Does anyone have any thoughts on how someone could have gotten past the > firewall and peeked into my machine? > > Thanks. > -- > Samantha > ------- > Real programmers do not comment their code. If it was hard to write, it > should be hard to understand. > > http://taz.cs.wcupa.edu/~ssamuel > > > > ______________________________________________________________________ > Philadelphia Linux Users Group - http://www.phillylinux.org > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug > > -- ______________________________________________________________________ Philadelphia Linux Users Group - http://www.phillylinux.org Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce General Discussion - http://lists.phillylinux.org/mail/listinfo/plug

References:

[PLUG] weak linux firewall?
From: Samantha Samuel <ssamuel@taz.cs.wcupa.edu>

Prev by Date: Re: [PLUG] weak linux firewall?

Next by Date: [PLUG] network not reachable

Previous by thread: Re: [PLUG] weak linux firewall?

Next by thread: [PLUG] Revolution OS

Index(es):

Date

Thread