On Thu, 20 Apr 2000, Chris Mason wrote:
> I'm running a debian Linux box using pmfirewall to configure ipchains. I have
>everything incoming closed off except for 80 (web) and I have ipmasq in action.
> I want to use pcanywhere from a workstation inside the firewall to a server outside,
>what changes do I need to make to enable this and is it wise?
Not only is it not wise, it's probably incredibly unwise.
Besides the obvious password guessing attacks possible on the server, but
in the last week or so it looks like one DoS oppertunity may exist and
that the password encryption is weak enough to make passwords recoverable
from sniffing sessions.
Given that PCA is obviously under increased scrutiny, I'd be very wary of
deploying it until a lot of things shake out.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
[EMAIL PROTECTED] which may have no basis whatsoever in fact."
PSB#9280
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
