Re: Link from corperate site to internal corp. network
From: dwarkeeper (dwarkeeper@hotmail.com)Date: 08/04/02
- Previous message: Stephane Nasdrovisky: "Re: How to check"
- In reply to: Leonard Leblanc: "Re: Link from corperate site to internal corp. network"
- Next in thread: Stewart John H SSSD: "RE: Link from corperate site to internal corp. network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "dwarkeeper" <dwarkeeper@hotmail.com> To: "Leonard Leblanc" <lleblanc@emergeknowledge.com>, <security-basics@securityfocus.com>, <brahma@mendolink.com> Date: Sun, 4 Aug 2002 04:26:26 -0400
When you say u are going to provide a link to the intranet machine /server,
either u have to NAT or some how point to the machine so external access
(internet access) is allowed directly to the "internal server". Thus in all
essence you are giving direct internet connection to a machine on your
"internal server". Thus if potentially some exploit exists on ur internal
server a malicious user can gain access not only to that "internal server",
but potentially install sniffers and other software to get direct access to
your entire internal network. Thus the concept of DMZ's and thus the concept
of segmentation of networks and switches etc.
DK
----- Original Message -----
From: "Leonard Leblanc" <lleblanc@emergeknowledge.com>
To: <security-basics@securityfocus.com>
Sent: Friday, August 02, 2002 1:00 PM
Subject: Re: Link from corperate site to internal corp. network
> I'm actually battling this same issue myself right now. The only problem I
> could see this causing is simply making fingerprinting easier for the
> hackers. Other than that, I don't see any problems, but I would definately
> be interested in hearing others comments.
>
> Leonard Leblanc
>
> ----- Original Message -----
> From: "Chris" <brahma@mendolink.com>
> To: <security-basics@securityfocus.com>
> Sent: Thursday, August 01, 2002 1:33 PM
> Subject: Link from corperate site to internal corp. network
>
>
> > I am just curious what other professionals out their think of this. I
> have
> > been forced into letting our web dev dept. put a link on a company web
> site
> > to the internal network which is on private IP's. What security
problems
> > can this cause. I don't really see an obvious issue but I just don't
like
> > the idea myself.
> >
> > Thank You,
> >
> > Chris D.
> > Network Security
> > Mendo Link, LLC
> >
> > "An Ounce Of Prevention Is Worth A Pound Of Cure."
> > Om Namo Narayanaya
> >
> >
>
>
- Previous message: Stephane Nasdrovisky: "Re: How to check"
- In reply to: Leonard Leblanc: "Re: Link from corperate site to internal corp. network"
- Next in thread: Stewart John H SSSD: "RE: Link from corperate site to internal corp. network"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
