[14953] in bugtraq
Re: Standard & Poors security nightmare
daemon@ATHENA.MIT.EDU (Jim Knoble)
Fri May 19 17:11:39 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <20000518162734.A15524@ntrnet.net>
Date: Thu, 18 May 2000 16:27:34 -0400
Reply-To: Jim Knoble <jmknoble@jmknoble.cx>
From: Jim Knoble <jmknoble@PINT-STOWP.CX>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <200005171944.MAA24060@linux.mtndew.com>; from Stephen Friedl on
Wed, May 17, 2000 at 12:44:01PM -0700
Circa 2000-May-17 12:44:01 -0700 schrieb Stephen Friedl:
: Standard & Poor's ComStock division sells a MultiCSP system that
: provides realtime stock quotes and news, and [...] These machines are
: an unmitigated *disaster* for security, and it's not often I can use
: "unmitigated" so literally.
[...]
: 6) Install and use ipchains on *both* interfaces to drastically reduce what
: this machine can do. [....]
Kernel 2.0.35 is likely to use ipfwadm, which is likely to already be
installed on a Red Hat Linux 5.1 system. Anyone know of a reason not
to use ipfwadm?
--
jim knoble | jmknoble@jmknoble.cx | http://www.jmknoble.cx/
