Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_2

Bugtraq archives for 2nd quarter (Apr-Jun) 1995: Re: All.Net's security testing service

Re: All.Net's security testing service

Melvin Klassen (KLASSENUVVM.UVIC.CA)
Wed, 05 Apr 95 10:00:00 PDT

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Martin J. Hannigan: "Re: How to shell in lynx. And FreePort bugs."
Previous message: Dion Stempfley: "Re: ANNOUNCE: Rscan 1.4.0 and IRIX-security, NetSecurity Mod"
Maybe in reply to: Baltzer, Craig: "All.Net's security testing service"
Next in thread: John Adams: "Re: All.Net's security testing service"

On Wed, 5 Apr 07:07:59 -0500 (EST) Paul Ferguson <paulhawksbill.sprintmrn.com>
wrote:
> jdwilsongold.chem.hawaii.edu (NetSurfer) wrote:
>> Does it work in the case of a user dialing in for PPP,
>> and then connecting to ALL.NET ?
>No. It uses reverse domain mapping (gethostbyaddr)
>to direct its vulnerability testing.

If the user is running LINUX, and using PPP to connect,
and the IP-address assigned for the session is fully-registered in the DNS,
then it would be an effective test of the security on the user's machine.

If the user is running some lesser SLIP/PPP package, then what's the point?

Next message: Martin J. Hannigan: "Re: How to shell in lynx. And FreePort bugs."
Previous message: Dion Stempfley: "Re: ANNOUNCE: Rscan 1.4.0 and IRIX-security, NetSecurity Mod"
Maybe in reply to: Baltzer, Craig: "All.Net's security testing service"
Next in thread: John Adams: "Re: All.Net's security testing service"