On 13 Mar 1996, Steve Benesko/CTI wrote:
> For instance, a few sites that I have configured use Quarterdeck's Iware
> Connect (similar to internet junction). With Iware, Netware IP has to be
> enabled on at least 1 Netware server. Now with NO TCPIP services installed
> (such as Telnet, FTP, etc.) what could the zones of risk possibly be for
> NetWare?
I have a Windows 3.1 laptop with a WWW server installed (freeware). I
assume anybody on your internal network could do likewise. There are also
freeware ftp servers out there and at least one telnet client that can
act as an ftp server while the telnet session is in progress.
Then there is that bright guy in accounting who decides to set up an
internal www server with access to all the customer billing information
and sets it up as http://www.yourcompany.com. Oops, now everybody hunting
for your public WWW server gets the not-confidential-any-more facts and
figures.
Of course, I don't know any of these Novell-based products and I could be
completely wrong about the degree of packet filtering and so forth...
Michael Dillon Voice: +1-604-546-8022
Memra Software Inc. Fax: +1-604-546-3049
http://www.memra.com E-mail: michael @
memra .
com
References:
|
|
