Tilted Forum Project Discussion Community - View Single Post

hk- · 12-01-2003, 04:36 AM

^^ Indeed, I just couldnt be arsed to go into all of that. Also with hardware firewalls you have their vurnability issues, if your running a n*x box as a firewall for example with ipchains/iptables/whatever as your firewall, you have to make sure that the box running the firewall is secure.

The number of times I have been pen testing for a company and they show me their firewall and the damn thing is running telnetd... well i've lost count.

(Telnet can be made to fall over in the time it take to blink, thus giving access to the firewall box, thus an attacker can turn off the firewall, whats worse is they control a box on your network... fun!).

12-01-2003, 04:36 AM	#12 (permalink)
hk- Upright	^^ Indeed, I just couldnt be arsed to go into all of that. Also with hardware firewalls you have their vurnability issues, if your running a n*x box as a firewall for example with ipchains/iptables/whatever as your firewall, you have to make sure that the box running the firewall is secure. The number of times I have been pen testing for a company and they show me their firewall and the damn thing is running telnetd... well i've lost count. (Telnet can be made to fall over in the time it take to blink, thus giving access to the firewall box, thus an attacker can turn off the firewall, whats worse is they control a box on your network... fun!). __________________ [ hk ] [ hk.hamlesh.com ]