Re: Gen Security: Cable Modems

Tue, 2 Mar 1999 11:58:04 -0500 

>From what you are describing "a guy you know" was more then likely using
NetBIOS or some utility that uses NetBIOS, really the only security this
protocol has is password protection which still allows for a great deal 
of information leakage or unbinding the protocol from whichever interface
is connected to the Internet is a better solution.  The only other program
for NT server I could think of would be netmon.  Yes, because you are on a WAN
all your traffic is broadcast to hosts on the same segment.  Its not the 
size of the firewall that counts but how well it logs and how well it is 
configured.  As far as security issues with cable modems, some are queried
via snmp, so they inherit all the problems of using this protocol.  With DSL
you don't have the same problem with broadcasting all your traffic to your 
friendly neighbors.

Cheers,
Cohen     

At 12:44 AM 3/2/99 -0800, Daniel wrote:
>General security question:
>I have had a cable modem running for several months now, and have had no
>problems with any kind of noticable breakins to my system.  I have heard
>that it's possible to bypass security protocols and search through
>subscriber's local drives.  A guy I know mentioned that he used a
>program installed with NT Server to look through people's disks.  I
>asked the installation guy what kind of security it has, because @Home
>is basically a WAN.  He mentioned that it's a "very large firewall"
>(sounds like an application gateway, from what he said.)
>Is any of this true?  I know that there isn't any kind of "totally"
>secure networked system connected to the Internet, but c'mon. . .
>
>Are there security issues related to the fact that it's a cable modem.
>i.e., would a DSL be any more secure?  If so, why?
>
>Thanks in advance.
>
>Dan Walsh
>aspiring MCSE
>--
>
>==================================================
>"What has four legs and an arm?  A happy pit bull"
>- Bumper Sticker
>+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
>
>e   - [EMAIL PROTECTED]
>url - http://members.home.net/karsus
>
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
>
---
Cohen Liota
Information Security Specialist         +1.416.815.3041 - voice
Secure Computing Corporation            +1.416.815.3001 - fax
[EMAIL PROTECTED]         http://www.securecomputing.com/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to