** Low Priority **
Are you discussing Open Bloomberg or is your firewall concern related to another
Bloomberg offering? My understanding is that Open Bloomberg uses a custom hardware
controller (software downlodable) to feed an internal Ethernet network. It also assumes a
DSU/satellite feed. It is unclear to me yet whether the controller is routing or is
functioning as a server to clients.
In the traditional Bloomberg terminal environment, BLP can monitor, reset, update the
>>> Adam Shostack <adam @
org> 21:30 17 Jul1997 >>>
A bunch of my freinds have written to tell me that Bloomberg is
financial software, offering quotes & news & analysis. Which I knew.
What I meant to ask, and did not make clear, is 'what actions does
their software perform, and do they have security implications?' For
example, can their software update itself? Does it contain debugging
stuff to help Bloomberg figure out whats wrong with it remotely?
Does it send mail via Bloomberg's servers? What are you opening up
by opening those ports?
Adam Shostack wrote:
| What does their software do? Is it resiliant? Why are they using 4
| ports? Can their software be used to attack your network? Have they
| written a firewall proxy yet?
| Henry Lemon wrote:
| | What are some of the problems or concerns with creating outgoing proxy for ports
| | Bloomberg now allows access form the Internet and requires these ports.
| | TIA
| | Henry Lemon
| | Lemonhl @
| He has erected a multitude of new offices, and sent hither swarms of
| officers to harrass our people, and eat out their substance.
He has erected a multitude of new offices, and sent hither swarms of
officers to harrass our people, and eat out their substance.