Firewalls: Re: Any Java experience?

Firewalls
(August 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Any Java experience?
From:	peter @ nmti . com (Peter da Silva)
Date:	Sun, 27 Aug 1995 17:35:46 -0500 (CDT)
To:	ajack @ corp . micrognosis . com (Adam Jack)
Cc:	peter @ nmti . com, firewalls @ greatcircle . com
In-reply-to:	<9508272008 . AA13802 @ becks> from "Adam Jack" at Aug 27, 95 04:08:48 pm

> 	The eventual consensus was that there were holes in HotJava - that
> 	the user configuration hole sucked - but that aside - the level of
> 	security _appear_ sufficient that you wouldn't cut the tap off.

The biggest hole I know of is that you can apparently open pretty much an
arbitrary socket from HJ. It has some restrictions, but mostly it'll let you
connect inside a firewall or outside a firewall but not both.

It shouldn't be too hard to embed a SATAN clone in an applet and have it
sniff out information and send it back via an SMTP connection.

Follow-Ups:

Re: Any Java experience?
From: ajack @ corp . micrognosis . com (Adam Jack)

References:

Re: Any Java experience?
From: ajack @ corp . micrognosis . com (Adam Jack)

Indexed By Date	Previous:	Firewalls and X-Windows, Flames From: Sick Puppy <sikpuppy @ maestro . com>
Indexed By Date	Next:	Re: Any Java experience? From: ajack @ corp . micrognosis . com (Adam Jack)
Indexed By Thread	Previous:	Re: Any Java experience? From: ajack @ corp . micrognosis . com (Adam Jack)
Indexed By Thread	Next:	Re: Any Java experience? From: ajack @ corp . micrognosis . com (Adam Jack)