> -----Original Message-----
> From: Ron DuFresne [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, 5 September 2000 4:56 PM
> To: [EMAIL PROTECTED]
> Subject: RE: Online Security Services and Continous Risk Management
>
>
> Folks,
>
> Sorry to revive a topic that looks for the most part closed,
> but, I have a
> question or two related to said issue:
>
> For those currently letting others maintain various aspects of their
> network, perimeter, inner-soft-chewy-center, etc; Would you
> be concerned
> to find the company doing the maintainance work for you
> mostly via open
> text channels via the internet?
It depends.
> Have the issues of sniffers and IP spoofing
> become a non-worry these days really?
Sniffers and IP spoofing are possibly less of a threat than you might think.
If you're administering a system elsewhere on the Internet, an IP spoofing
attack is actually quite difficult. Sniffing is sometimes easier, but only
an option to people that have a level of physical access to the wire, in
most cases. As for blind hijacking...sit down one time and work out
everything that needs to be true for such an attack to be feasible.
The real risk of spoofing / active hijack / eavesdropping is worth
considering but not as great as many people suggest. I get sick of people
tossing "IP Spoofing" around as a term as if it works for interactive
traffic. It almost always doesn't.
>
> How many out there are aware of other companies providing outsourced
> maintainance of the networking services of others, doing so
> with the same
> disregard for eavsdropping and potential compromise as
> described above?
It really depends on what's being maintained. For low threat sites, regular
password changes and telnet might be good enough. For high threat sites, I
would expect one-time passwords or an encrypted / authenticated session. I
don't think it's fair to say that anyone who is using telnet for remote
administration is negligent.
>
>
> Thanks,
>
> Ron DuFresne
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Cheers,
--
Ben Nagy
Network Consultant, Volante Solutions
PGP Key ID: 0x1A86E304 Mobile: +61 414 411 520
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
