Re: Am I more vulnerable using broadband?

From: Alan J. Flavell (flavell_at_mail.cern.ch)
Date: 07/23/03 

Date: Wed, 23 Jul 2003 21:12:23 +0200

On Wed, Jul 23, Joseph Whalen inscribed on the eternal scroll:

> While it certainly isn't fool proof, changing IP's on your connect can
> certainly assist in securing your connection. Especially in the scenario
> given above where an attacker would probe your system to find a weakness and
> then come back later to "do the deed".

I would strongly recommend not trying to rely on that. Many intruders
come equipped with a package of tools to probe, break-in, and
immediately cover its tracks, all within the space of a few seconds at
most.

The same warning applies to folks who are trying to obfuscate their
software versions in the hope that the hackers won't notice they're
still running a vulnerable version.

> Much like a buglar casing your house
> and looking for patterns of vulnerability (like you going to work the same
> time every day).

There are significant differences.

> If you change your IP address frequently you can minimize
> exposure to this risk.

If you pay proper attention to security, then you can minimise many
more risks than this one. One of the problems with applying a partial
and ineffective measure or two, is that they are inclined to offer a
false sense of security, and divert effort away from other important
areas of vulnerability. A bit like adding a second lock to the front
door while leaving the back window open...

Relevant Pages

  • Re: Risk metrics
    ... security management life cycle. ... more objective snapshot of a company's risk posture. ... > traditional risk metrics in pen-tests cannot be ... >> vulnerability works, and if an exploit is in the ...
    (Pen-Test)
  • RE: Why Easy To Use Software Is Putting You At Risk
    ... Why Easy To Use Software Is Putting You At Risk ... Four Construction Workers Died after Crane Collapse in Toledo, ... The first issue to address is yes you found a vulnerability and it was ... a Security Discussion board, that is what we do here. ...
    (Security-Basics)
  • SecurityFocus Microsoft Newsletter #165
    ... Tenable Security ... distribute, manage, and communicate vulnerability and intrusion detection ... Microsoft Internet Explorer MHTML Forced File Execution Vuln... ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #174
    ... This issue sponsored by: Tenable Network Security ... the worlds only 100% passive vulnerability ... MICROSOFT VULNERABILITY SUMMARY ... Novell Netware Enterprise Web Server Multiple Vulnerabilitie... ...
    (Focus-Microsoft)
  • [NT] Cumulative Security Update for Internet Explorer (MS04-038)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... CSS Heap Memory Corruption Vulnerability, ... Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6 ...
    (Securiteam)