[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Might be off topic. Are computers with168.192.x.xsafe from Internet?
- Subject: Re: [cobalt-security] Might be off topic. Are computers with168.192.x.xsafe from Internet?
- From: "jwk at Zone Alpha" <jwk@xxxxxxxxxxxxx>
- Date: Mon, 4 Jun 2001 01:55:30 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
----- Original Message -----
From: Carrie Bartkowiak <ravencarrie@xxxxxxxx>
> It might help if we knew what kind of router you were running.
> For example, Linksys routers come with a nice firewall already set up.
> However, if you're allowing port forwarding to a certain machine, then
> you've got a point of failure there, and someone can come in if you're
> not careful.
Thanks for your thoughts. I have Cisco 678 that can enforce some filtering
rules. I am relatively
comfortable in terms of closing various ports on individual machines.
However, what I am really afraid of is if it would even be remotely
conceivable to have a hacked linux machine with physical cable connection
to the private network to infiltrate the private NT machines with
192.168.x.x addresses. Of course, I have no samba or any other file sharing
arrangement set up between the two segments. The NT server is set up so
that only the local users can log in only through the local machines -- no
remote access, not even dial-up, to the server.
My original question was somewhat of an academic curiosity. Since IP
packets wiht private IP addresses are not supposed to be routable, my
question was if computers with just private IP address can ever be reached
by hackers. One possible way, although I don't know how, might be if
someone hacks into public IP machine and somehow reach into private IP
machines.
James Kim