[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Portsentry, ipchains and pmfirewall
- Subject: Re: [cobalt-security] Portsentry, ipchains and pmfirewall
- From: "Edward Cruz" <edward.cruz@xxxxxxxxx>
- Date: Wed, 23 Jan 2002 16:55:37 -0800
- Organization: Eiron
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> > why is Webmin considered to be unsafe. I run it under Net::SSLeay
>
> If you allow UDP packets to be received at the webmin port, then it's
> possible to pry webmin open and to gain full access. It requires
> the attacker to send customly and manually crafted packets and it requires
> some patience as it's not a 100% straightforward process.
Why not just add an ipchain rule to prevent UDP access to the WebMin port?