Hi,
Someone talked in this mailing list about the port problem between
Reuters-3000 services and Firewall-1 services (#156 & 157).
Unhapilly I lost the report, and I'd like to ask some questions,
as:
- Is there a security problem with this configuration?
- Reuters-3000 uses Full IP from customer site to Reuters
servers. Reuters does not want to give me details about
their internal security. Does someone knows something about it?
- Reuters uses a Real-time Unix (QNX) as session server (=gateway).
Does someone knows about the security of this machine?
- The QNX IP stack has been re-written for Reuters. Any
information?
- Reuters needs the customer to use RIP protocol. I think it
may be quite dangerous, as Reuters may get information about
our real network
- Reuters "RBR" service needs to share NT disks from Reuters
side to customer side. I think this implies the use of "considered
dangerous" services as 137/138/139. Is there a risk there?
Thank you for your help.
PS. Similar problems occur with Bloomberg service. Does someone uses it?
\|||/
(. .)
+-------------ooO-(_)-Ooo------------------------------------------------+
| Bruno RAOULT - Chess, tonight? |
| |
| Tel. (33-1) 42.13.45.19 Fax: (33-1) 42.13.69.66 |
| Kobby. (33-1) 51.01.20.71 e-mail: br @
ota .
societe-generale .
fr |
+------------------------------------------------------------------------+
|| ||
ooO Ooo
Follow-Ups:
|
|
