[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: NYT on Internet Flaws
Patrick Horgan wrote:
> > From: "K. M. Ellis" <[email protected]>
> > This one is _really ripe_ for a response to the editor. Ideas?
> > We could start something off-list if there are several interested in
> > co-authoring.
> I'd love to see something in there about most commercial sites being behind
> firewalls without nfs access across the firewall. This greatly reduces the
> risk from the nfs problems. If you get your binary via nfs from a trusted
> host inaccessible from the internet, then if you have this problem management
> can handle it as an employee problem;) There are ways to make secure
> firewalls, it's fairly well understood. Sometimes people point to things
> like the hack Mitnick did last Christmas, but his attack took advantage of
> a couple of things a security expert shouldn't have allowed, first and
> foremost two machines were accesible from the internet, and one of them
> trusted root logins from the other without a password:(
It might also be worth noting that people accessing the net
via an ISP from home do not typically use NFS either.
Jeff Weinstein - Electronic Munitions Specialist
Netscape Communication Corporation
[email protected] - http://home.netscape.com/people/jsw
Any opinions expressed above are mine.