Home page logo
/

basics logo Security Basics mailing list archives

Re: tcp wrapper vulnerability
From: "Gleb Paharenko" <gpaharenko () gmail com>
Date: Fri, 27 Jun 2008 10:27:44 +0300

Hi.

IMHO, tcp wrappers is a way to fine grain controls in case you have
limited management on firewall rulebase. I'd prefer to limit access
with firewall (it can be hosted on the same machine, e.g ipf, iptables
etc.)

2008/6/26 MontyRee <chulmin2 () hotmail com>:

Hello list.


I would like to know the vulnerability or disadvantage of tcp wrapper in the point of security.

As I know, there is a limit of service which can do by tcp wrapper.
(only for telnet, ssh, ftp something like that)

and is it possible to avoid tcp wrapper config by session hijacking(for example using hunt)?

As I heard it is possible theoretically but actually it's very hard at the lastest linux kernel like 2.6, right?


Please share your idea.

Thanks for your help.


Regards.


_________________________________________________________________
확 달라진 MSN 홈페이지, 지금 바로 만나보세요!
http://www.msn.co.kr




-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com
http://www.linkedin.com/in/gpaharenko

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault