RE: Security and Modems

From: Ogle Ron (Rennes) (OgleR@thmulti.com)
Date: 09/07/01 

Message-ID: <05B4910E0216D411B14F00508B6A67A901214402@RENEXCH5.rennes.thmulti.com>
From: "Ogle Ron (Rennes)" <OgleR@thmulti.com>
To: focus-sun@securityfocus.com
Subject: RE: Security and Modems
Date: Fri, 7 Sep 2001 11:23:19 +0200

If they really want security, then I'd suggest that you use some type of
in-line encryptor with the modem. Since, they want to use call back, then
you can have 2 fixed encryptor/decryptors in-line with the modems. AT&T
provides such products that I've used very successfully. You put the "lock"
at one site and the "key" at the other site.

The setup is as follows:

Remote System:
wall jack to "lock" via RJ-11 patch cord, "lock" to modem via another RJ-11
phone cord, and modem to Ultra 5/10 via an RS-232/422 serial cable with 25
pin DIN connectors.

Local System: same as remote system but replace "lock" with "key". Note
you can have multiple local boxes/ "keys" paired to a single "lock" for
higher availability.

With this approach, a phreaker won't even know that there is modem on the
other end to try to break, and if they try to tap the line, then they will
only see noise.

Ron Ogle
Thomson multimedia
Rennes, France

The statements made above are my own opinions and not that of the company
where I'm employed.

> -----Original Message-----
> From: Gary Mulder [mailto:gary@cgen.com]
> Sent: Wednesday, September 05, 2001 5:21 PM
> To: Lisa Bogar
> Cc: focus-sun@securityfocus.com
> Subject: Re: Security and Modems
>
> Lisa Bogar wrote:
> >
> > I have a client who wants to install a V.Everything 56K
> Analog Corporate
> > Modem on their Sun Ultra 80. I was wondering if anyone has
> experience
> > with the modem and in particular connecting it to an Ultra
> 80. In the
> > specs it touts caller authorization and dial-back security
> features and I
> > would like to know how effective these are and also any
> redflags anyone
> > might have with this feature.
> >
> > In general, does anyone have some other features they have
> implemented to
> > secure access to the machine via a modem? Any resources or
> suggestions
> > are appreciated.
> >
> > Thanks,
> > Lisa

Relevant Pages

  • trace ip
    ... Ascend digital modem box, his last attack I logged he tried 15 or so ... easy to see from the out side or make the security really LAX on that comp. ... It is all command ...
    (microsoft.public.security)
  • Re: trace ip
    ... > How can I trace someone trying to hack my ascend digital vpn modem? ... > authentication and is being logged into our RAD logs. ... > to c:\) So it will look like this in command ... Anyway I am not too worried about security ...
    (microsoft.public.security)
  • Re: Modem assessment, was: Re: Pentester convicted..
    ... Subject: Modem assessment, was: Re: Pentester convicted.. ... approved Modem Security Policy also helps. ... Download FREE whitepaper on how a managed service can ...
    (Pen-Test)
  • RE: Would you pay more ...
    ... modem as a preferred option. ... the router could be ... pre-configured to limit the ports passed through, ... If you wish to have more security, a firewall is of course the ...
    (Security-Basics)
  • Re: SPRINT ADSL [Zyxel 645 Series Modem]
    ... The problem lies in the fact that the modem you have provided to your ... Sprint is working closely with its DSL modem manufacturer to ensure the security and integrity of its Sprint-provided DSL equipment. ... Sprint is dedicated to providing its customers a secure broadband Internet network, and to that end, recently identified an additional layer of security that can help protect customers' DSL modems.<?xml:namespace ...
    (Bugtraq)