-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This is a common mis-conception about nat (pat overload or whatever you want to call it); that the security is fairly strong. Nat is a way to prevent the inevitable depletion of public ip space. The fact that it provides security is a bonus and not at all it's original reason for being created. How would I get around this (this being attacking a private IP)? Why layer 7 client-side attacks of course. If I can execute code on your computer to make an outbound connection to mine game over. Wait, if I can just plain execute code (pick your buffer overflow choice. I know there a bunch of IE 6 one's that have not been sovled yet; though I am not sure if they all allow the attack to run code of their choosing.) then the game is over. As always an IDS (network or host based) can take care of this for you (keeping an eye on what is leaving and entering your network).
HTH, Leon - -----Original Message----- From: Jason Jaszewski [mailto:[EMAIL PROTECTED]] Sent: Friday, January 18, 2002 2:21 PM To: [EMAIL PROTECTED] Subject: Security of Private Networks Hello all, If I have a Private network (with IPs of the 192.168.1.x flavor) and run WinRoute (which utilizes NAT), or even a Cable/DSL router, what are my security concerns. It is my understanding that since private networks are non-routable on the Internet, it is a "relatively" secure setup. Assuming the boxes are running Windows 2000 and there is no software such as VNC or other remote admin software, what are the security concerns to have? I would assume vulnerability with email attachments, downloads, or file sharing, etc. But, for the sake of argument, assume that these issues are not factors. Is there a way to get into those machines? In my (thus far) limited understanding of NAT, I was informed that because NAT creates the socket, it would be difficult to connect to a box with a Private IP remotely without some kind of software previously installed. However, based on previous list emails about the (in)security of NAT, I question this. Are there apps out there that could "trick" the NAT box (or router) into making a connection with another machine? Even without remote admin software installed, assuming the conditions above? Thanks in advance for answering my curiosity..... Jason -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com> iQA+AwUBPExQxNqAgf0xoaEuEQJHsACg2C2Nas35GsLiqkA1aWJE29VNEZ0AmOcT Buf5LgIyzWlfbAZOsfnbY6Y= =UGRQ -----END PGP SIGNATURE-----
