Sez Jaakko Manninen (for which I'm grateful):
>
>
> Has anyone looked into the possibility of a user on a network under
> a Firewall running a SLIP/etc connection? Example.
>
> You have a closed 1200+ PC-machine LAN, connected to the Net thru
> a BSDI+Firewall. One PC-end user in his days of wisdom decides to
> purchase a SLIP-connection to a local INet provider. He enables "IP
> Routing" from his Windows for Workgroups, and someone on the net "sees"
> or hears about this, and decides to route himself into the "firewalled"
> network thru this machine... Boom.
>
> I couldn't think of an easy way to disable this possibility, other
> than telling the end user not to do this. Any hints/ideas?
>
I've just been reading about a package called "The Internet Adaptor," which
purports to set up a "pseudo-slip" link over an ordinary dialup link.
What's to keep the PC user from dialing in and routing the "pseudo-SLIP"
connection out to another network his PC is connected to?
--
Tim Evans | E.I. du Pont de Nemours & Co.
tkevans @
eplrx7 .
es .
dupont .
com | Experimental Station
(302) 695-9353/7395 | P.O. Box 80357
EVANSTK AT A1 AT ESVAX | Wilmington, Delaware 19880-0357
References:
|
|
