Firewalls: Re: Inbound telnet sessions.

Firewalls
(April 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Inbound telnet sessions.
From:	Walker Aumann <walkera @ druggist . gg . caltech . edu>
Date:	Thu, 14 Apr 1994 13:57:43 PDT
To:	"Rhett, Joe" <JRhett @ sextantgroup . com>
Cc:	Firewalls @ greatcircle . com
In-reply-to:	Your message of "Thu, 14 Apr 1994 12:31:38 PST." <9403147663 . AA766351898 @ smtplink . sextantgroup . com>

> 2 Questions:
> 
> 1 - Any user can use
> > open xxx.xxx.xxx.xxx 25
>         .. and telnet to the sendmail port on the Sun boxes. The security
> here is performed at the Router and Firewall system, trying to leave the 
> inner system alone. (Yah, I know that a single break and the whole system
> is compromised but this is how it's being done...)
>         -- Therefore, I'd like to find a way to kill that ability, and/or
> replace telnet with something more limited.

Write a program that has them type in the IP address and then execs telnet
so you're sure they're connecting to the correct port on the destination
machine.

Walker Aumann
walkera @
 gg .
 caltech .
 edu

References:

Inbound telnet sessions.
From: "Rhett, Joe" <JRhett @ sextantgroup . com>

Indexed By Date	Previous:	Re: Inbound telnet sessions. From: alastair @ cadence . com (Alastair Young)
Indexed By Date	Next:	Re: probe_tcp_ports From: Paul Walmsley <c617666 @ sgi12 . phlab . missouri . edu>
Indexed By Thread	Previous:	Inbound telnet sessions. From: "Rhett, Joe" <JRhett @ sextantgroup . com>
Indexed By Thread	Next:	Re: Inbound telnet sessions. From: alastair @ cadence . com (Alastair Young)