[8354] in bugtraq
Re: Firewall-1 Security Advisory
daemon@ATHENA.MIT.EDU (Ejovi Nuwere)
Fri Oct 30 16:34:53 1998
Date: Thu, 29 Oct 1998 07:39:50 -0800
Reply-To: Ejovi Nuwere <joey@CPIO.NET>
From: Ejovi Nuwere <joey@CPIO.NET>
X-To: Gary Gaskell <gaskell@FIT.QUT.EDU.AU>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.GSO.3.95.981028075930.2647N-100000@primrose.isrc.qut.edu.au>
On Wed, 28 Oct 1998, Gary Gaskell wrote:
*And what about the default of the ports 256, 257, 258 and 259 appearing on
*every interface? A little concerning, since they are not listed in the
*table of ports in the main manual. Even more concerning when I'm told
*they are for secure remote support, logging and configuration control!
*This obscurity makes one rather nervous.
Also remote GUI's, putkey commands (public key exchanges), and if you dont
have the VPN modules I believe it uses a 40 bit encryption
algorithm FWZ1, or DES. never seen anything about those ports in any of
the manuals, never heard it mentioned in any of the classes.
Oh, and those ports are a really nice way to identify a FW-1 machine ;)
Ejovi.
joewee.
