Re: Honeypot stats
- From: Kilgallen@xxxxxxxxxxx (Larry Kilgallen)
- Date: 11 Jan 2006 23:38:57 -0600
In article <11sbge4k57q1339@xxxxxxxxxxxxxxxxxx>, Dave Froble <davef@xxxxxxxxxxxxx> writes:
> Larry Kilgallen wrote:
>> As for "open new ports", that vulnerability is a characteristic of
>> TCP/IP where unprivileged users can set up a port to accept incoming
>> connections without authorization. On DECnet adding some corresponding
>> vulnerability requires privilege.
>
> Well Larry, today's reality is TCP/IP. Even so, a user with no privs,
> opening a non-priv port, cannot affect the rest of the system any more
> than said user could without using TCP/IP.
Crashing the system is not the only possible security problem.
Unauthorized modification or release of data is actually more
important in most cases, and keeping unauthorized users from
permitting that which is forbidden is essential to maintaining
control of a system.
With DECnet one knows that no normal user has created some path
for unauthenticated connections.
.
- Follow-Ups:
- Re: Honeypot stats
- From: Dave Froble
- Re: Honeypot stats
- References:
- Re: Honeypot stats
- From: William Webb
- Re: Honeypot stats
- From: Neil Rieck
- Re: Honeypot stats
- From: JF Mezei
- Re: Honeypot stats
- From: Neil Rieck
- Re: Honeypot stats
- From: JF Mezei
- Re: Honeypot stats
- From: davidc
- Re: Honeypot stats
- From: JF Mezei
- Re: Honeypot stats
- From: Keith Parris
- Re: Honeypot stats
- From: Neil Rieck
- Re: Honeypot stats
- From: JF Mezei
- Re: Honeypot stats
- From: Larry Kilgallen
- Re: Honeypot stats
- Prev by Date: Re: OSX using VMS NFS
- Next by Date: Re: Dave Cutler (was OT: time to market with the 8086)
- Previous by thread: Re: Honeypot stats
- Next by thread: Re: Honeypot stats
- Index(es):
Relevant Pages
|
