> Windows95 Workstation on a private network (supposedly secure) with dial-up
> PPP to the internet.
> I assume that windows 3.11,NT and 95 can forward packets from the PPP link to
> the local network, thereby acting as a router and exposing the private network
> to the internet.
> Can anyone give me some specific examples of this ocurring and the security
> effects or point me at a RFC or whitepaper to read?
Attaching modems directly to a workstation connected to a network
would be a Bad Thing (TM). Even if IP forwarding and you aren't routing
is turned off you have exposed an unprotected node to the outside.
If someone can log in from the outside while you are connected or
happens to find your modem's phone number, you've been breached.
Wayne Gifford giff @
Sun Internet Commerce Group Phone 703-716-6426
2100 Reston Parkway Phax 703-620-1244
Reston VA, 22091 http://www.incog.com