Security Basics mailing list archives

Re: NAT external/Public IP

From: Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>
Date: Thu, 25 Oct 2007 18:37:59 +0200

On 2007-10-25 crazy frog crazy frog wrote:

2)If you allow lots of machine to direct access the internet with
external ip they may pose a security risk.


How would that pose a risk that would not exist with NAT'ed machines?


there are multiple machines,so it might be possible that some of them
contains the vulnerable software or users are dumb enough?


At the risk of repeating myself: how would that pose a risk that would
not exist with NAT'ed machines?

also hope you understand difference between having a single ip to
attack and having multiple ips to attack :)


No, actually I fail to see a difference there. Please elaborate.

Regards
Ansgar Wiechers
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

Current thread:

RE: NAT external/Public IP, (continued)
- - - RE: NAT external/Public IP Grant Donald (Oct 30)
    - Re: NAT external/Public IP Ansgar -59cobalt- Wiechers (Oct 30)
    - RE: NAT external/Public IP Security Incidents (Oct 30)
    - Re: NAT external/Public IP crazy frog crazy frog (Oct 31)
    - RE: NAT external/Public IP Dan Lynch (Oct 31)
    - Re: NAT external/Public IP Chris Barber (Oct 25)
    - RE: NAT external/Public IP Nick Vaernhoej (Oct 25)
    - Re: NAT external/Public IP Ansgar -59cobalt- Wiechers (Oct 25)
    - Re: NAT external/Public IP Brett (Oct 25)
    - Re: NAT external/Public IP crazy frog crazy frog (Oct 25)
    - Re: NAT external/Public IP Ansgar -59cobalt- Wiechers (Oct 25)
- Re: NAT external/Public IP Ansgar -59cobalt- Wiechers (Oct 25)
- RE: NAT external/Public IP Marc Payne (Oct 25)
- Re: NAT external/Public IP gavin . williams (Oct 25)
- Re: Re: NAT external/Public IP proneetb (Oct 25)