RE: Cable Vs. DSL

From: Cosentino, Guilherme V. (Guilherme.Cosentino_at_alcoa.com.br)
Date: 04/25/03

  • Next message: Frank Gearhart: "Re: Cable Vs. DSL" 
    To: 'Chris Travers' <chris@travelamericas.com>, Xueyan Liu <xueyall@yahoo.com>
Date: Fri, 25 Apr 2003 16:26:53 -0300

    Here in Brazil,in most cases, traffic between customers and ISP is
    "tunneled" by PPPoE after cable modem boot and POST. The communication
    between cable modems is not allowed due to the config file parameters
    received just after the boot. Unfortunately, the official documentation
    of Managing Committee (a brazilian task force that writes
    recommendations to Internet use) are in Portuguese. BTW, here's the
    link:
    http://www.cg.org.br/grupo/seg_cabo.htm

    My question is: Is it possible to snif encapsulated traffic? I don't
    think so, but maybe I'm wrong...

    Guilherme

    -----Original Message-----
    From: Chris Travers [mailto:chris@travelamericas.com]
    Sent: Thursday, 24 de April de 2003 11:00 PM
    To: Xueyan Liu
    Cc: security-basics@securityfocus.com
    Subject: Re: Cable Vs. DSL

    Xueyan Liu wrote:

    >since you brought up router/firewall, do you think a
    >simple router such as linksys or netgear which does
    >NAT, drop based on port number and port forwarding
    >provides enough security for SOHO users behind a
    >cable/dsl modem?
    >
    >Xueyan
    >
    >
    Hi Xuehan;

    My own opinion is that for a SOHO office this is generally enough of a
    security *product* when combined with good anti-virus software because
    these routers effectively create a barrier by not allowing inbound
    connections in their default settings. However, this does not prevent
    trojans using *outbound* connections from being installed via
    email.... But no security product can provide *enough security*.
    Instead. I think, it is important to combine it with awareness of social

    engineering/email and virus-like trojans, etc.

    Best Wishes,
    Chris Travers

    ------------------------------------------------------------------------ 

    ---
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam,
the 
world's premier event for IT and network security experts.  The two-day 
Training features 6 hand-on courses on May 12-13 taught by
professionals.  
The two-day Briefings on May 14-15 features 24 top speakers with no
vendor 
sales pitches.  Deadline for the best rates is April 25.  Register today
to 
ensure your place.
http://www.securityfocus.com/BlackHat-security-basics 
------------------------------------------------------------------------
----

  • Next message: Frank Gearhart: "Re: Cable Vs. DSL"

    Relevant Pages

    • [NEWS] RCA Cable Modem Contains Multiple Vulnerabilities
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The RCA Digital Cable Modem serves as a two-way high-speed bridge between ... [gabi@pluto gabi]$ snmpset 192.168.100.1 public system.sysName.0 s lame ...
      (Securiteam)
    • Re: DHCP or Probe?
      ... Roadrunner assigns your cable modem a 10 dot address even though your host ... This is more than likely your cable modem renewing its IP ... > Security Linux, the comprehensive security solution that combines six ...
      (Incidents)
    • Re: DHCP or Probe?
      ... I'm getting the following traffic about every second to my cable modem (My ... firewall with virus/spam protection, URL filtering, VPN, ... Security Linux, the comprehensive security solution that combines six ...
      (Incidents)
    • Re: ie 6 sp2 problem
      ... Check for a HOSTS file. ... If running a cable modem, dsl modem or router, have you, at some point, shut ... Check any third-party security programs to see if one of them is blocking ... Norton Internet Security can cause problems with SP2. ...
      (microsoft.public.windows.inetexplorer.ie6.browser)