|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Administrivia #4883 (fwd)
Subject: Re: Administrivia #4883 (fwd)
From: jason storm (jms
NEGATION.NET)
Date: Fri Jan 14 2000 - 01:39:53 CST
- Next message: 3APA3A: "Re: procmail / Sendmail - five bugs"
- Previous message: Blue Boar: "Re: Firewall-1 Logging *Issue*"
- Next in thread: Marc Esipovich: "Re: Administrivia #4883 (fwd)"
- Reply: Marc Esipovich: "Re: Administrivia #4883 (fwd)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> recently discoverd that flowpoint dsl routers by default do not limit the
> number of attempts you can have at entering a password to get logged in.
> To my knowledge, (I've not finished reading the manual yet) there's no
> option to turn this default behavior off, though I cannot verify this.
> With a simple perl script, someone could simply hammer away at the
> flowpoint routers until they find a combination of characters that works.
> There's no point in saying what kind of security risk this is, I think
depending on the version OS your flowpoint runs, you can limit what ip's
can telnet in using the filter command. if you apply that feature
correctly, you effectively prohibit brute forcing the router pw. treat it
like cisco's access-list's retarded little brother and you wont be too
disapointed.
word to burger,
jason storm
- Next message: 3APA3A: "Re: procmail / Sendmail - five bugs"
- Previous message: Blue Boar: "Re: Firewall-1 Logging *Issue*"
- Next in thread: Marc Esipovich: "Re: Administrivia #4883 (fwd)"
- Reply: Marc Esipovich: "Re: Administrivia #4883 (fwd)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Fri Jan 14 2000 - 01:55:37 CST