Re: Vulnerability?

From: Duane Arnold (notme_at_notme.com)
Date: 05/12/03

• Next message: abhishek pandey: "MSN & Yahoo messanger through firewall"
• Previous message: nunya: "Re: internet activity site - has block lists?"
• In reply to: Marcus Fox: "Vulnerability?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Mon, 12 May 2003 02:21:28 GMT

> Is it possible for
> other computer to get something dodgy like a trojan through a download
which
> can then access main computer because it's in trusted zone?
>

It's an issue on any network, especially if the machines are sharing
resources. The machines are protected from the Internet, but once one is
infected or compromised, the machine can reach out and attack other machines
on the LAN, or someone could remotely go after other machines on the LAN.

You could get a router and that way you could reduce the risk from the other
machine, because you had to do ICS with the other machine. The router allows
the other machine to access the Internet independently not needing the main
computer to provide the access to the Internet. And if you got a router that
had a print server, you could further reduce the risk, since you wouldn't
need to share the printer on the main computer.

If you had to do file sharing with the other machine, you limited it to one
directory on both machines and place files in like the *Transfer*
directories, which could reduce risk.

For me, I just put an IDS/firewall application on each machine knowing that
it will help protect the machines from each other and help stop an attack
from a compromised machine on the LAN, even if resources are being shared
between machines.

Dr. *D* :)

-- 
The protection of the machine is a process and is not a given!

---

• Next message: abhishek pandey: "MSN & Yahoo messanger through firewall"
• Previous message: nunya: "Re: internet activity site - has block lists?"
• In reply to: Marcus Fox: "Vulnerability?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Changing the Default Gateway ... I agree that I can't see how the WAN side of the router would have anything ... is saying that the folks changed the internal LAN IP of the router to .222. ... this new MPLS internet connetion and phase out the Frame router. ... All tests passed on this DNS server ... (microsoft.public.windows.server.sbs) RAS - Routingproblem? DNS? Wins? ... ging übers Kabelmodem ins Internet und die andere ins LAN. ... Adapter und über diesen nam der Router externe Anrufe unseres Aussenlagers ... anderen PCs ganz normal mit 1 Netzwerkkarte im LAN angehängt ist. ... (microsoft.public.de.german.windowsxp.networking) RAS - Routingproblem? DNS? Wins? ... ging übers Kabelmodem ins Internet und die andere ins LAN. ... Adapter und über diesen nam der Router externe Anrufe unseres Aussenlagers ... anderen PCs ganz normal mit 1 Netzwerkkarte im LAN angehängt ist. ... (microsoft.public.de.german.windowsxp.networking) Re: CEICW Network Error ... Normally with a router in the mix, the router gets the public IP ... address on its WAN side and its LAN side is given a private IP ... Please post results of an ipconfig /all for sbs server. ... Users brought in another tech and messed up internet ... (microsoft.public.windows.server.sbs) Re: Router install problem ... A router is an interface between two networks that otherwise couldn't ... that's the Internet (the Wide Area ... Network or WAN) and your local area network (LAN). ... and 5 buttons on the left (Wizard, Wireless, WAN, LAN, DHCP). ... (microsoft.public.windowsxp.network_web)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)