[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Portsentry, ipchains and pmfirewall

Subject: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
From: "Edward Cruz" <edward.cruz@xxxxxxxxx>
Date: Wed, 23 Jan 2002 16:55:37 -0800
Organization: Eiron
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> > why is Webmin considered to be unsafe. I run it under Net::SSLeay
>
> If you allow UDP packets to be received at the webmin port, then it's
> possible to pry webmin open and to gain full access. It requires
> the attacker to send customly and manually crafted packets and it requires
> some patience as it's not a 100% straightforward process.

Why not just add an ipchain rule to prevent UDP access to the WebMin port?

References:
- RE: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Jim Carey
- Re: [cobalt-security] Portsentry, ipchains and pmfirewall
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Next by Date: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Previous by thread: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
Next by thread: Re: [cobalt-security] Portsentry, ipchains and pmfirewall

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index