|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: management interface accessability (was Re: Worm / UDP1434)
> > ... If you are relying on their ACL's to protect your telnet and > > snmp access, but are otherwise allowing their management interfaces > > to hear traffic from the whole Internet, then you should turn in > > your badge and go back to bagging groceries or whatever it is you > > used to do. > > Some would argue this should apply to those exposing MSSQL to the > outside world such that it could even receive malicious port 1434 > packets... in fairness to microsoft, there have been worms based on apache and bind and popper and fingerd (buffer overruns) and even sendmail (wizard password) so the wide scale code review one gets from open source software engineering is only a marginal solution to monocultural weakness vectors. -- Paul Vixie
|