Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Firewall Wizards: Re: Trust an IP? (IPTables)

Re: Trust an IP? (IPTables)

From: Paul Robertson <proberts_at_patriot.net>
Date: Thu, 1 May 2003 10:51:17 -0400 (EDT)

On Thu, 1 May 2003, David Lang wrote:

> the fundamental problem with the r* tools wasn't trusting an IP address,
> it was trusting a 'root' source port.

Actually, there's a good argument to be made that the issue was trusting a
host well enough to allow login without additional credentials. Coupled
with the fact that such trust is extended by addign a simple text file to
a user's home directory, and things get ugly pretty quickly.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
proberts_at_patriot.net which may have no basis whatsoever in fact."
probertson_at_trusecure.com Director of Risk Assessment TruSecure Corporation

_______________________________________________
firewall-wizards mailing list
firewall-wizards_at_honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Received on May 01 2003

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos