[PLUG] VNC, SSH, and iptables [was: Transfering mozilla mail and newsgroup settings fromlinux to windows]

James Devenish devenish at guild.uwa.edu.au
Mon May 10 06:50:26 WST 2004


In message <1084118010.5049.17.camel at rasputin.localnet>
on Sun, May 09, 2004 at 11:53:31PM +0800, Craig Ringer wrote:
> On Sun, 2004-05-09 at 23:26, Cameron Patrick wrote:
> > That's a valid point, and indeed I believe that one of the recent MS
> > Windows worms propagated (amongst other ways) through a flaw in a
> > Windows firewall product.
> OTOH, with a default firewall the attacker must find _two_ holes - one
> in the firewall, and one in a service. The service must also be running
> and listening in the first place.

Just to clarify: with some firewall products for which I have seen
security alerts, my understanding is that it is the firewall itself
that can be exploited.





More information about the plug mailing list