In some mail from Michael Dillon, sie said:
[...]
> > I've been trying for a long time looking for the details of how break
> > in can
> > be achieved through this kind of dial-up connection but to my
> > disappointment,
> > almost all discussions were TOO GENERAL. I think I need more information
> > to
> > convince TOP management and myself that this kind of dial-out internet
> > connection is in fact dangerous before we can lay down some guidelines
> > and enforce it.
>
> Stop thinking of it as a dial-out Internet connection. It makes no
> difference who does the dialling, once you are connected, you are
> CONNECTED. At that point anybody can attempt anything they want with your
> machine because it is DIRECTLY connected to the Internet with absolutely
> no firewall protection whatsoever. ISP's do not use firewalls because
> they are PUBLIC-ACCESS systems. If you have a weakness it is fully
> exposed at this point.
There is a significant difference/risk between dialing out through tip
or cu and using the 'net interactively than to setting up a PPP session.
Also, although you state that ISP's do not use firewalls, they do have a
need to protect themselves and their customers, and if they've got a
conscience, the rest of the Internet too, from nasties.
I don't know about you, but if I were an ISP, and had an office network,
I'd probably want to firewall that from the network that was used for
connecting together my backbone/customers.
darren
Follow-Ups:
References:
|
|
