heads up ... another imapd attack source

Craig A. Huegen chuegen at quadrunner.com
Tue Dec 15 06:07:59 UTC 1998

You will find this same situation with most cable modem providers
who give out "wingate" to users.  There is a certain cable modem
provider who has significant amounts of open wingates on their network,
capable of being used from the outside.

Nothing is being done to close these, though, until they're abused.
Scanning for them is considered a 'breach of privacy' (rather than a
security assessment) and unfortunately allows people day after day to
abuse other systems with a very difficult-to-trace open relay.

I've been told that newer versions of wingate handed out by these
providers have disabled open relaying from the outside; however,
users can (and do) play and can easily misconfigure them to allow
access from anywhere.


On Mon, Dec 14, 1998 at 04:53:30PM -0700, Christian Nielsen wrote:

==>But, to this day, they still have an open relay on their cable modem network
==>that allows script kiddies from around the world to use them(1). 

More information about the NANOG mailing list