On Thu, 4 Apr 2002, Smith Joseph wrote: > All, > > Please pardon me if this has been addressed in the past; I am new to this > list and am trying to learn what I can about security issues.
Many sites have searchable archives of Firewalls, some of which go back to the dawn of time, Google has spidered them all and finding them isn't that difficult... > Are there any known security problems/vulnerabilities with Citrix ports > (1494/1604) open on the firewall? When they give access to a Citrix server, the potential for compromise of the server is probably the biggest issue. The client code is easily retrievalbe, and ID/password guessing is a trivial attack. I haven't decompiled the Java client, but I assume it'd be relatively trivial to modify it to dictionary attack a server, certainly since it saves ID/password info- scripting such an attack should be easy. It's not on my list of things to work on though, since I've always been of the opinion that anyone who hangs internal servers out on the Internet without strong two-factor authentication at a gateway in between that server and the rest of the planet deserves what comes. Historically, the protocol has had issues, but is fairly reasonable other than the fact that by default any client can connect and authenticate. > 5201 Alliance Gateway > Fort Worth, TX 76178-3729 > Work: 817-224-9012 > Cell: 817-999-7703 > [EMAIL PROTECTED] I'm curious- why do people give their cel phone numbers to the entire Internet, and how much do people abuse them when they do? In a targeted attack, it'd certainly be useful to the attacker for either social engineering or denial-of-admin attacks, but I wonder what the incidence of pseudo-random abuse is? Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions [EMAIL PROTECTED] which may have no basis whatsoever in fact." _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
