Firewalls: [no subject]

Firewalls
(June 1996)

Indexed By Thread: [Previous] [Next]

From:	Donald . J . Smith @ cdev . com (Donald J Smith)
Date:	Thu, 27 Jun 1996 16:55:58 -0700
To:	firewalls @ greatcircle . com

>Date: Thu, 06 Jun 1996 07:28:22 -0400
>From: Bob Allison <ballison @
 scitexdpi .
 com>
>Subject: Re: Compuserve -Reply
>
>Quick reminder to everyone using the Internet to get to Compu$erve and AOL:
>
>Last I heard, your account/password information was transmitted in the clear,
>which means, of course, that a snooper has access to your CS or AOL account.
>(If this info is outdated, I'm sure someone will be kind enough to tell me.)
>
Last I heard aol can do a server push, download files from and delete files
from the clients harddrive. This implies a mini-server is built into the
client. If that
is not secured then it is at least vunerable to spoofing attacks.
Any comprimise in the dns tree or ip routing between you and aol
and a trojan aol service could do anything the real aol server could to your
 machine. 
This is based on old memories but it caused quite a stir when some users
found out
aol could reconfig the users local software. But I am not the expert.
Perhaps someone at aol will correct or enlighten us. If the "mini-server"
can be 
block or disabled then I would like to know it. (So would most of the people
allowing this stuff thru their firewalls, I hope.)

>>>> Dana Brewer <dana @
 dilbert .
 nav .
 cc .
 tx .
 us> 06/05/96 02:16pm >>>
>On Wed, 5 Jun 1996, Michael Dillon wrote:
>
>> If you are behind a firewall you also need to open a plug-gw on port 4144
>> and you need to go into the CIS.INI file and change occurences of
>> "compuserve.com" to "firewall-machine.yourdomain.com". I don't have an
>> original CIS.INI here any more but I find lines like the following in
>> mine:
>
>Thanks!  I needed this information.  Does anyone know how to connect to
>America Online via TCP/IP from behind a firewall?
>  **************************************************************************
> Dana Brewer
> Director, Computer Center             Internet:  dana @
 nav .
 cc .
 tx .
 us
> Navarro College                       Phone   :  903-874-6501
> 3200 W. 7th Ave.                      FAX     :  903-874-4636
> Corsicana,  TX  75110
Donald J Smith 
Network Security Engineer @Computing Devices International

design in security @ the begining & 
ease_of_use != A*(1/Data_Security)

(my opinions are mine and so are the spelling errors ;-)

Indexed By Date	Previous:	Re: Gauntlet - How good is it? From: Michael Dillon <michael @ memra . com>
Indexed By Date	Next:	Re: IP address for Enterprises use -Reply From: Rabid Wombat <wombat @ mcfeely . bsfs . org>
Indexed By Thread	Previous:	FW: Microsoft Firewalls From: Russ <Russ . Cooper @ RC . Toronto . on . ca>
Indexed By Thread	Next:	RE: From: "Rodney R. Fournier" <rodf @ cris . com>