Firewall Wizards mailing list archives
Re: DNS on the Firewall - security problem
From: Alfred Huger <ahuger () silence secnet com>
Date: Fri, 10 Oct 1997 14:12:22 -0600 (MDT)
there is no egg* to overflow and break a chroot. Thus, if you don't put CHROOT/bin/sh in place, the standard attacks will fail, but a smart attacker can still get in. In practicality, there are few smart attackers.
It only takes *one* smart attacker with a subscription to Bugtraq and a predeliction to share his or her work. The l0pht (which you referanced) is a perfect example of this. /**************************************************************************** Alfred Huger http://www.secnet.com/ballista Project Director ahuger () secnet com Secure Networks Inc. (SNI) *****************************************************************************/
Current thread:
- Re: DNS on the Firewall - security problem Adam Shostack (Oct 10)
- Re: DNS on the Firewall - security problem Alfred Huger (Oct 10)
- Re: DNS on the Firewall - security problem Adam Shostack (Oct 12)
- Re: DNS on the Firewall - security problem Darren Reed (Oct 12)
- Re: DNS on the Firewall - security problem Perry E. Metzger (Oct 12)
- Re: DNS on the Firewall - security problem Aleph One (Oct 12)
- Re: DNS on the Firewall - security problem Gaddy Gumbao (Oct 13)
- Message not available
- Re: DNS on the Firewall - security problem Bernd Eckenfels (Oct 19)
- Re: DNS on the Firewall - security problem Adam Shostack (Oct 12)
- Re: DNS on the Firewall - security problem Alfred Huger (Oct 10)