> Because 9 times out of 10 port 135 is blocked by some sort of firewall,
> whilst port 80 is not blocked on a web server.
Not telecommuters on dial-up IP's and Blue-Toothed into the net thru
their Ericsson phones, and surfing from the airport and WIFI cafes of the
world. Most Sysadmins are still oblivious to the need for
desktop/personal firewalls like Zone Alarm and McAfee. Dial
up IP address pools are THE attack vector to watch out for, since a crack
there will crack the private networks of the world, either thru VPN, or
when the user walks back into the office and plugs in the wormed system.
Spend hundreds of thousands on firewalling, millions in man hours on
security, then let unprotected laptops in and out of your network, and
allow uncontrolled home computers to VPN....what a waste.
You don't need high bandwidth for the initial spread....just a good
vector. People need to think about this threat differently...I'm sure
that the crackers and espionage folks already have.
-Bryan
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Aug 01 2003
Intro
