Firewalls: Re: Secure Modem Pool

Firewalls
(April 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Secure Modem Pool
From:	FV Admin mail <fvadmin @ sgf . fv . com>
Date:	Tue, 25 Apr 1995 18:15:52 +0100
To:	Ari Shamash <ari @ soscorp . com>
Cc:	Steve England <se @ adv . sbc . sony . co . jp>, firewalls @ GreatCircle . COM
In-reply-to:	<199504251416 . KAA02711 @ dauntless . soscorp . com>

> Generally, these kind of attacks work like this: a person trying to
> break in dials up the modem, and then simulates a hangup noise and
> dialtone WITHOUT ACTUALLY HANGING UP.  The dialback modem thinks the
> line has hung up, picks up the line, dials, and waits for a carrier.
> The person supplies a carrier, and viola, connects to the system.

Well, that's just *broken*.  Either that, or it's from the way-back days 
when the callee couldn't hang up on a call if the caller stayed off 
hook.  Nowadays, there's no possible reason why a callback modem wouldn't 
just hang up the line itself before picking up, listening for dial-tone, 
and dialing.

The other means of breaking into a callback modem is to have the phone 
company add call forwarding to the employee's phone (who checks?), have it 
forwarded to the cracker's modem, and then call in.  --Darren

Follow-Ups:

Re: Secure Modem Pool
From: lars @ RNS . COM (Lars Poulsen)
Re: Secure Modem Pool
From: ari @ soscorp . com (Ari Shamash)
Re: Secure Modem Pool
From: Christian Wettergren <cwe @ it . kth . se>

References:

Secure Modem Pool
From: ari @ soscorp . com (Ari Shamash)

Indexed By Date	Previous:	Re: Lecture on firewall performance From: George Mullins <george @ wicked . neato . org>
Indexed By Date	Next:	Re: Lecture on firewall performance From: woods @ ncar . ucar . edu (Greg Woods)
Indexed By Thread	Previous:	Secure Modem Pool From: ari @ soscorp . com (Ari Shamash)
Indexed By Thread	Next:	Re: Secure Modem Pool From: Christian Wettergren <cwe @ it . kth . se>