RE: [fw-wiz] terminal services
From: R. DuFresne (dufresne@sysinfo.com)
Date: 01/28/03
- Next message: Malte von dem Hagen: "[fw-wiz] PIX split tunneling"
- Previous message: Barney Wolff: "Re: [fw-wiz] terminal services"
- In reply to: Paul D. Robertson: "RE: [fw-wiz] terminal services"
- Next in thread: Duncan Sharp: "Re: [fw-wiz] terminal services"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "R. DuFresne" <dufresne@sysinfo.com> To: "Paul D. Robertson" <proberts@patriot.net> Date: Tue Jan 28 20:27:01 2003
On Tue, 28 Jan 2003, Paul D. Robertson wrote:
[SNIP]
>
> While I'm sure there needs to be some sort of patching discipline, it's
> not a simple or clear-cut thing.
>
Which seems to make a strong casepoint for the hardening of exposed hosts
and the continued need for well defined security perimiters at this point
in time still <security basics 101?>. Which was the place this worm could
have and most likely should have had far less success in making the mess
that it did in the short time frame in question. Imagine if the payload
had something more distructive in it...
A question here remains for those security folks who *didn't* block the
ports or at least proxy the connections in some safer manner. Though, as
confusing as the M$ world is explained in Paul's and Russ's post and post
within, it seems nightmarish, it's no wonder many home machines would have
gotten hit, yet, with some of the reports of the networks that were
disrupted by this packet-spammer, it's amazing that security budgets
are still lacking and a commitment to strong security policy
compliance and enforcements are not in place within the finacial
transaction methoods now in place. Not that government networks fare
any better for sure <new nightmares are so easy to happen across>...
> Paul
> [1] Disclaimer, TruSecure owns NTBugtraq too, and there's an advertisement
> for something or other (for our people certification thing even) tacked on
> to the post. Might be advertising on the site too. It's probably a plot to lure
> you all into our wiley list trap...
As I said, please sign me up fer wiley's list Paul!
Thanks,
Ron DuFresne
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
-- Johnny Hart
testing, only testing, and damn good at it too!
- Next message: Malte von dem Hagen: "[fw-wiz] PIX split tunneling"
- Previous message: Barney Wolff: "Re: [fw-wiz] terminal services"
- In reply to: Paul D. Robertson: "RE: [fw-wiz] terminal services"
- Next in thread: Duncan Sharp: "Re: [fw-wiz] terminal services"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
