Re: Linux iptables/netfilter and Netmeeting Remote Desktop Sharing

From: Richard Harmonson (donotspam@attbi.com)
Date: 03/15/02

• Next message: wild98: "Re: firewall woes"
• Previous message: Nico Kadel-Garcia: "Re: Linux iptables/netfilter and Netmeeting Remote Desktop Sharing"
• In reply to: Nico Kadel-Garcia: "Re: Linux iptables/netfilter and Netmeeting Remote Desktop Sharing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Richard Harmonson <donotspam@attbi.com>
Date: Fri, 15 Mar 2002 17:00:34 GMT

:)

I am in totally agreement with you. It makes administration of commercial
networks a nightmare. People insist they absolutely require MS's
Netmeeting. Rrr. Telling owners and managers using such software is an
invitation to have company data/records taken, does not always convince
them using it is a bad idea.

:(

> This is because most Microsoft applications are demoware: they work in
> presentations to get purchasing managers to say "Oooh, Ahhh" but ignore
> the most basic compatibility and security issues.
>
> You need to leave most of your "high-numbered" ports open for reasons
> involving two-way communications. However, there are many dozens of
> high-numbered ports that should be blocked by default. These include the
> HylaFAX fax ports, VNC's default ports, various audio and video ports if
> you don't want to accidentally carry such high-traffic services, obvious
> ports that users and really stupid web designers try to map spare HTTP
> servers to without notifying the sys-admin that a new, commercial, and
> completely insecure web server is being installed without the network
> administrator's knowledge (such as 8000, 8080, and 8443), and a bunch of
> others.
>
> The Micro$oft approach is "if we wrote it, we don't want anybody to
> accidentally turn it off". Fundamental service security has *never* been
> a significant feature for them, they want you to buy their add-on
> filters and virus checkers instead and not potentially cut off their
> ability to "share".

-- 
Richard Harmonson
A+/CCNA/CNA/MCSA/NET+/RHCE
http://www.kinetotech.com

---

• Next message: wild98: "Re: firewall woes"
• Previous message: Nico Kadel-Garcia: "Re: Linux iptables/netfilter and Netmeeting Remote Desktop Sharing"
• In reply to: Nico Kadel-Garcia: "Re: Linux iptables/netfilter and Netmeeting Remote Desktop Sharing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Auto-sensing for IPS devices ... Auto-Negotiation is essential in larger networks. ... about 1000's of switch ports and PC's connecting/disconnecting ... the ports at whatever they need to be. ... > you MUST set BOTH speed and duplex settings and you MUST set BOTH ... (Focus-IDS) Re: Seeking UFFI for sockets on Linux ... > case is if a firewall is discarding your packets, ... ports on each of many hosts. ... This program is kind of tailored to networks that look like my ... (comp.lang.lisp) Re: Notifying user of open Internet access ... didn't enter their planning until after they started with Windows 95. ... administrators of networks, but you also didn't expose those systems to ... I really is amazing, and on such a large scale, even with publicity, ... OUTBOUND to destination ports 135~139,445, and not just inbound on those ... (alt.computer.security) Re: One Gateway, Two Networks ... ethernet ports to one of the four ethernet ports on the DSL connected ... Speedtouch router? ... folders on our networks, but now we we'll be sharing, I'd rather set us ... (microsoft.public.windowsxp.network_web)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)