Network Config (was Re: [NBLUG/talk] Changed Network)
Walter Hansen
gandalf at sonic.net
Fri Apr 30 16:09:50 PDT 2004
I don't know; I've only got three ports coming in. I'm port scanning
myself right now and that's exactly what I see. Everything else is silent.
The service connected to those ports are fully logged. Anyone getting
through would only be able to attack these three ports directly. A DNS
attack could come to the farthest router as it will reply to pings.
<snip>
> <blink>
>
> *NO* way to log/monitor transactions? Attempts to hit various ports? If
> someone portscanned you, or got to your internal boxes, you wouldn't
> know? Can't you even get some of this with... say, a MIB or somesuch
> snmp agent?
>
> Ummm. You DO realize the formula here, right?
> lotsa bandwidth + little security = big target for cracker/hacker
> types And without being able to see what's happening on your network,
> you're missing a key component of security. Unless you've got a
> snoop'ing NIC on those net's in passive/promiscuous mode.
>
> If you're paying for DSL + Broadlink every month, it seems like a *bit*
> more capability in the routers wouldn't be entirely amiss... your call,
> o' course.
>
>
> - Steve S.
>
>
>
>
> _______________________________________________
> talk mailing list
> talk at nblug.org
> http://nblug.org/cgi-bin/mailman/listinfo/talk
More information about the talk
mailing list