[fw-wiz] Corp network infection through VPN

From: Tina Bird (tbird_at_precision-guesswork.com)
Date: 08/21/03

  • Next message: Dave Killion: "RE: [fw-wiz] Apple's iSight and Firewalls" 
    To: firewall-wizards@honor.icsalabs.com
Date: Wed, 20 Aug 2003 16:30:56 -0700 (PDT)

    Wasn't someone on this list asking for docs on cases where networks had
    been infected through VPN connections? I stumbled across this today:

    http://www.esisac.com/publicdocs/SQL_Slammer_2003.pdf

    "SQL Slammer Worm Lessons Learned for Consideration by the Electricity
    Sector"

    which documents the impact of Slammer on a SCADA network that was
    infected through a VPN connection.

    Fascinating. In a "drive by the accident without looking" sort of way.

    tbird 

    --
A computer lets you make more mistakes faster than any invention in human
history - with the possible exception of handguns and tequila.
                                 -- Mitch Ratliff
http://www.precision-guesswork.com
Log Analysis http://www.loganalysis.org
VPN http://vpn.shmoo.com
tbird's Security Alerts http://securecomputing.stanford.edu/alert.html
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
  • Next message: Dave Killion: "RE: [fw-wiz] Apple's iSight and Firewalls"

    Relevant Pages

    • Outlook 2003 VPN SBS 2K Exchange Unavailable
      ... We have three networks on different subnets, ... I use VPN connections between ... I used to use Outlook ... and reinstall entire client machine, new profiles, different users, ...
      (microsoft.public.windows.server.sbs)
    • Re: VPN fails to connect SBS 2003
      ... mail is fine and the limits are adequate. ... make VPN connections ... >> necessary for one of these networks to have a remote worker connect as a ... >> the other two networks. ...
      (microsoft.public.windows.server.sbs)