management interface accessability (was Re: Worm / UDP1434)

• Previous message (by thread): management interface accessability (was Re: Worm / UDP1434)
• Next message (by thread): management interface accessability (was Re: Worm / UDP1434)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > ... If you are relying on their ACL's to protect your telnet and
> > snmp access, but are otherwise allowing their management interfaces
> > to hear traffic from the whole Internet, then you should turn in
> > your badge and go back to bagging groceries or whatever it is you
> > used to do.
> 
> Some would argue this should apply to those exposing MSSQL to the
> outside world such that it could even receive malicious port 1434
> packets...

in fairness to microsoft, there have been worms based on apache and bind
and popper and fingerd (buffer overruns) and even sendmail (wizard password)
so the wide scale code review one gets from open source software engineering
is only a marginal solution to monocultural weakness vectors.
-- 
Paul Vixie

• Previous message (by thread): management interface accessability (was Re: Worm / UDP1434)
• Next message (by thread): management interface accessability (was Re: Worm / UDP1434)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]