Re: Effects from failed security ?

Weld Pond (weldL0PHT.COM)
Wed, 17 Nov 1999 12:38:17 -0500

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: MJE: "Re: Removal of TCP Initial Sequence Number Patch"
• Previous message: FUSA: "Re: Effects from failed security ?"
• Maybe in reply to: Craig Williams: "Effects from failed security ?"
• Next in thread: Steve: "Re: Effects from failed security ?"

The critical issue here is whether there is a filtering device on the
network seperating the externally reachable machines (the IIS servers)
from the internal machines. The externally reachable machines should be
in a firewalled DMZ so when they are broken into they cannot reach the
internal machines.

Using non-internet routable addresses is not a solution to a security
problem. You need a firewall to do this.

-weld

On Wed, 17 Nov 1999, Craig Williams wrote:

> We have quite a large collection of IIS Servers and normal internal servers.
> The internal
> company servers are using private IP's - only the IIS servers use Real IP
> numbers.
>
> If the security on an IIS server was compromised, could someone use it to
> access the other
> internal servers ? or would they have to establish a local telnet on the IIS
> server ?
>
> Just wondering how safe we are *g* -
>
> Craig
>

• Next message: MJE: "Re: Removal of TCP Initial Sequence Number Patch"
• Previous message: FUSA: "Re: Effects from failed security ?"
• Maybe in reply to: Craig Williams: "Effects from failed security ?"
• Next in thread: Steve: "Re: Effects from failed security ?"

This archive was generated by hypermail 2.0b3 on Wed Nov 17 1999 - 13:58:16 CST