Security Basics mailing list archives
Re: Open All Outbound Ports?
From: <m2dzus () yahoo com>
Date: 10 Nov 2002 22:25:37 -0000
In-Reply-To: <FDEHJDIOOBLHLBCAOEJFMELFEOAB.billl () cyberbase7 com> ---snip--
opening all outbound ports is a bad idea. classic example is here.. director of marketing takes laptop home. director gets hacked via Trojan downloaded from non corporate mail. director brings laptop back to work. using netcat hacker sets up opens backdoor via a allowed port... and
tunnels
out through a high port to avoid detection. your firewall team wont see this if the port is open...
---snip--- Sorry if this sounds basic but I can't seem to figure out how this example would work? Please could you elaborate Surely the trojan would alerady have to be running on a open port for the hacker to connect to it in order to run netcat to setup a backdoor? Thanks
Current thread:
- Open All Outbound Ports? tony tony (Nov 08)
- RE: Open All Outbound Ports? Bill Lavalette (Nov 09)
- Re: Open All Outbound Ports? Meritt James (Nov 12)
- Re: Open All Outbound Ports? Sumit Dhar (Nov 13)
- Re: Open All Outbound Ports? Meritt James (Nov 12)
- Re: Open All Outbound Ports? Jens Rantil (Nov 09)
- Re: Open All Outbound Ports? Vince Hillier (Nov 11)
- RE: Open All Outbound Ports? Clint Harris (Nov 12)
- AW: Open All Outbound Ports? Robert Sieber (Nov 13)
- <Possible follow-ups>
- RE: Open All Outbound Ports? Garbrecht, Frederick (Nov 11)
- RE: Open All Outbound Ports? Naveed Ahmed (Nov 12)
- Re: Open All Outbound Ports? m2dzus (Nov 11)
- Re: Open All Outbound Ports? James Butcher (Nov 12)
- Re: Open All Outbound Ports? mitch_latham (Nov 11)
- Re: Open All Outbound Ports? Chris Berry (Nov 12)
- RE: Open All Outbound Ports? Chris Alliey (Nov 15)
- RE: Open All Outbound Ports? Mark Merchant (Nov 18)
- RE: Open All Outbound Ports? G. Class (Nov 21)
- Message not available
- RE: Open All Outbound Ports? Mark Merchant (Nov 22)
- RE: Open All Outbound Ports? Chris Alliey (Nov 15)
- RE: Open All Outbound Ports? Bill Lavalette (Nov 09)