[PLUG] Joe Jobbed - security considerations

alan alan at clueserver.org
Tue Oct 9 16:14:54 UTC 2007


On Tue, 9 Oct 2007, Rich Shepard wrote:

> On Tue, 9 Oct 2007, Michael Rasmussen wrote:
>
>> When connected to the Internet you are on the same road as the billions of
>> others at the same moment. Should the automated process that targets the
>> vulnerability you've not patched and isn't blocked by your firewall sweep
>> into your IP address you're toast.
>
>   I understand this, Michael. I thought the situation was that most of these
> vulnerabilities were conceptual and not actively being exploited. That's why
> I thought that measures of exploitation would be more useful.

Are you sure they are not being exploited?

Depends on what it is.  There are now databases of the most obscure 
exploits that can be automated for attack.  That vulnerability may not be 
a problem by itself, but it could become a problem when used in 
combination with something else.

There are additional things you can do beyond a firewall to protect your 
network.  Look into a package called "snort".

-- 
Never trust a queue structure designed by a cryptographer.



More information about the PLUG mailing list