Firewalls: Re: Attacks on unreachable systems

Firewalls
(October 1993)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Attacks on unreachable systems
From:	"Perry E. Metzger" <pmetzger @ lehman . com>
Date:	Fri, 22 Oct 1993 23:48:59 -0400
To:	firewalls @ greatcircle . com
In-reply-to:	Your message of "Fri, 22 Oct 1993 22:59:09 EDT." <199310230259 . AA13679 @ fnord . wang . com>
Reply-to:	pmetzger @ lehman . com

Tom Fitzgerald says:
> An intruder who
> reached a system inside a firewall, just once, could install a cron job
> that, at a particular time every night, initiated a telnet connection to a
> high-numbered port on an outside site, and exec'd a shell if the connection
> succeeded.

If the routers on the your DMZ won't let through arbitrary TCP
connections going out, you are safe from this.

Perry

References:

Attacks on unreachable systems
From: Tom Fitzgerald <fitz @ wang . com>

Indexed By Date	Previous:	Re: Attacks on unreachable systems From: Mark <mark @ blackplague . gmu . edu>
Indexed By Date	Next:	Re: Attacks on unreachable systems From: smb @ research . att . com
Indexed By Thread	Previous:	Re: Attacks on unreachable systems From: Karim . Saouli @ di . epfl . ch (Karim Saouli)
Indexed By Thread	Next:	Re: Sun sendmail vulnerability From: mjr @ TIS . COM