[55274] in North American Network Operators' Group
Re: management interface accessability (was Re: Worm / UDP1434)
daemon@ATHENA.MIT.EDU (Chris Wedgwood)
Sun Jan 26 12:29:54 2003
Date: Sun, 26 Jan 2003 09:29:07 -0800
From: Chris Wedgwood <cw@f00f.org>
To: Paul Vixie <vixie@vix.com>
Cc: nanog@merit.edu
In-Reply-To: <g3u1fwu1wz.fsf@as.vix.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, Jan 26, 2003 at 01:37:16AM +0000, Paul Vixie wrote:
> ... If you are relying on their ACL's to protect your telnet and
> snmp access, but are otherwise allowing their management interfaces
> to hear traffic from the whole Internet, then you should turn in
> your badge and go back to bagging groceries or whatever it is you
> used to do.
Some would argue this should apply to those exposing MSSQL to the
outside world such that it could even receive malicious port 1434
packets...
--cw
