[PLUG] firewall risk

Jeff Abrahamson on Thu, 30 Jan 2003 07:10:34 -0500

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] firewall risk

From: Jeff Abrahamson <jeff@purple.com>

To: plug@lists.phillylinux.org

Subject: [PLUG] firewall risk

Date: Thu, 30 Jan 2003 06:50:46 -0500

>received: from asterix.purple.com (asterix [192.168.0.6]) by diderot.purple.com (8.12.3/8.12.3/Debian -4) with ESMTP id h0UBokkX031411 for <plug@lists.phillylinux.org>; Thu, 30 Jan 2003 06:50:46 -0500

Delivery-date: Thu, 30 Jan 2003 07:10:34 -0500

Envelope-to: jeff@localhost

Mail-followup-to: plug@lists.phillylinux.org

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mutt/1.4i

All the discussion about firewalls aside, if a machine is running no services available to the outside world, how can an attacker break in? That is, suppose I make the naive argument that I only run sshd on port 22, so all other ports get denied anyway by dint of having nothing listening (not even inetd). Why bother with ip tables beyond masquerading? (I'm pretty sure this is wrong, I just don't know why.) -- Jeff Jeff Abrahamson <http://www.purple.com/jeff/> GPG fingerprint: 1A1A BA95 D082 A558 A276 63C6 16BF 8C4C 0D1D AE4B
Attachment: pgpLFM07C3U6m.pgp
Description: PGP signature

Follow-Ups:

Re: [PLUG] firewall risk
From: gabriel rosenkoetter <gr@eclipsed.net>

Re: [PLUG] firewall risk
From: Tobias DiPasquale <toby@cbcg.net>

Re: [PLUG] firewall risk
From: LeRoy Cressy <leroy@lrcressy.com>

Re: [PLUG] firewall risk
From: epike@isinet.com

Re: [PLUG] firewall risk
From: "William H. Magill" <magill@mcgillsociety.org>

References:

RE: [PLUG] dsl questions
From: "Eugene Smiley" <eugene@esmiley.net>

Re: [PLUG] dsl questions
From: LeRoy Cressy <leroy@lrcressy.com>

Prev by Date: Re: [PLUG] dsl questions

Next by Date: Re: [PLUG] firewall risk

Previous by thread: Re: [PLUG] dsl questions

Next by thread: Re: [PLUG] firewall risk

Index(es):

Date

Thread