Great Circle Associates Firewalls
(March 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Security of Networked Workstations with dial-up PPP Internet!!!
From: Wayne . Gifford @ East . Sun . COM (Wayne Gifford - Internet Commerce Group)
Date: Wed, 6 Mar 1996 17:18:17 -0500 (EST)
To: firewalls @ GreatCircle . com
In-reply-to: <UPMAIL02 . 199603060601010590 @ msn . com> from "Lachlan Mann" at Mar 6, 96 00:21:18 am 
> 
> Folks,
> 
> 	Windows95 Workstation on a private network (supposedly 	secure) with dial-up 
> PPP to the internet.
> 
> I assume that windows 3.11,NT and 95 can forward packets from the PPP link to 
> the local network, thereby acting as a router and exposing the private network 
> to the internet.
> Can anyone give me some specific examples of this ocurring and the security 
> effects or point me at a RFC or whitepaper to read?
> 
> 
Attaching modems directly to a workstation connected to a network
would be a Bad Thing (TM). Even if IP forwarding and you aren't routing
is turned off you have exposed an unprotected node to the outside.

If someone can log in from the outside while you are connected or
happens to find your modem's phone number, you've been breached.


giff
-- 
Wayne Gifford					giff @
 incog .
 com
Sun Internet Commerce Group			Phone 703-716-6426
2100 Reston Parkway	 			Phax  703-620-1244
Reston VA, 22091				http://www.incog.com
Follow-Ups:
References:
Indexed By Date Previous: Re: RealAudio and Firewalls
From: Bill Myers <bmyers @ DO1 . KYRENE . K12 . AZ . US>
Next: Re: POP server with UIDL command
From: "P. Godwin" <pgodwin @ claven . den . mmc . com>
Indexed By Thread Previous: Re: Security of Networked Workstations with dial-up PPP Internet!!!
From: "Rev. Ben" <samman-ben @ CS . YALE . EDU>
Next: Re: Security of Networked Workstations with dial-up PPP Internet!!!
From: Vinci Chou <vkmchou @ HK . Super . NET>
Google
 
Search Internet Search www.greatcircle.com