Security Basics mailing list archives
Re: External Penetration Question
From: thatch <leethatcher () gmail com>
Date: Thu, 10 Aug 2006 10:16:10 -0700 (PDT)
This does help me understand, and now you've pointed it out i see how it would work for example when i've been telnet'd into a network device and from there i have connected to another device etc.... Thanks. Michael Krymson wrote:
There are a couple of things to say about this. 1) Do you host your corporate web site on the Internet? This would be publicly accessible and thus part of an external pen-test. In addition, if you manage a lot of your own infrastructure, that would also be valid (DNS, mail servers). 2) The firewall itself, by its own nature, has to be accessible from the outside world for you to get Internet access. Therefore, the firewall itself can be tested for misconfigurations, default accounts, etc. Besides, you never know if an admin poked a hole for himself to get to his computer from home, and never fixed that up... 3) Lastly, what if you did have some web servers or a misconfiguration? I could poke at your web servers for a hole. If I find one, your NAT'd IP space means nothing now. Once I get control of one system inside your network, I can use its network context for further attacks. Think of it like one enemy attacker getting inside your walls and holing up inside a building that you thought was safe. He can scout and move into other buildings at will, using your own streets and streetlamps, your internal network and IP space. Does that help a bit? --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
-- View this message in context: http://www.nabble.com/External-Penetration-Question-tf2071662.html#a5748621 Sent from the Security Basics forum at Nabble.com. --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- External Penetration Question thatch (Aug 08)
- RE: External Penetration Question Robert D. Holtz (Aug 08)
- Re: External Penetration Question bloo (Aug 09)
- Re: External Penetration Question Chris Largret (Aug 08)
- <Possible follow-ups>
- Re: External Penetration Question krymson (Aug 08)
- Re: External Penetration Question thatch (Aug 10)
- Re: External Penetration Question crazy frog crazy frog (Aug 14)
- Re: External Penetration Question thatch (Aug 10)
- Re: External Penetration Question anonymous (Aug 08)
- RE: External Penetration Question David Gillett (Aug 09)
- RE: External Penetration Question Robert D. Holtz (Aug 08)