Re: Security and SunPCi cards

From: adam morley (adam@gmi.com)
Date: 08/21/01 

Date: Tue, 21 Aug 2001 14:30:34 -0700
From: adam morley <adam@gmi.com>
To: focus-sun@securityfocus.com
Subject: Re: Security and SunPCi cards
Message-ID: <20010821143033.A2858@chopin.ALTER.NET>

On Mon, Aug 20, 2001 at 03:59:56PM -0600, Lisa Bogar wrote:
>
> I don't have alot of experience with the windows world, but I have some
> clients interested in running Windows through a SunPCi card. My question
> is what security risks are there with running the Windows on this
> dedicated card to the rest of the system? Also, will this windows
> interface be directly accessible from other machines. I have not yet
> loaded the Windows operating system on the card, since I wanted to explore
> the risks I would undertake and also explore how I might minimize these
> risks.

ive run sunpci cards, and i can say they integrate pretty tightly. they have a few kernel level accesses (for disks and such) so they do have low level access. it does allow mouting the local filesystem (via map network drive) so theoretically, whatever user the process is running as (say, user bob) is what a remote hole in windows could gain access to, provided the card is plugged into the network. also, if some weird association was made, so that the sunpci card would open a .vbs file, then it could execute code.

realistically, they are pretty safe, very safe if not plugged into the network, but that is usually not feasible. not plugging it into the network can help a lot, or putting it behind a firewall. you could tunnel it through the sun if you had 2 nics -- plug the sunpci card into one nic and the other nic into the lan, then run proxy arp and sunscreen lite to filter incoming traffic, which should eliminate just about anything. i haven't heard of any local exploits for the sunpci software, but i would think there must be the possibility to exploit a hole somehow.

are you more concerned with remote attacks or local attacks?

>
> Thanks,
> Lisa
>

Relevant Pages

  • Security and SunPCi cards
    ... Subject: Security and SunPCi cards ... I don't have alot of experience with the windows world, ... clients interested in running Windows through a SunPCi card. ...
    (Focus-SUN)
  • Security and SunPCi cards
    ... Subject: Security and SunPCi cards ... I don't have alot of experience with the windows world, ... clients interested in running Windows through a SunPCi card. ...
    (Security-Basics)
  • Security patches vs Checked build ( debug ) OSs
    ... I have difficulty in installing security patches. ... running Windows XP Pro Checked OS. ...
    (microsoft.public.windowsxp.security_admin)
  • [NT] Cumulative Security Update for Internet Explorer (MS04-025)
    ... Get your security news from a reliable source. ... * Microsoft Windows NT Workstation 4.0 Service Pack 6a ... Navigation Method Cross-Domain Vulnerability ...
    (Securiteam)
  • [NT] Vulnerability in HTML Help Allows Code Execution (MS05-001)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... * Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service ...
    (Securiteam)