[Malvern] Network monitoring.
Stuart "Sslaxx" Moore
stuart at sslaxx.demon.co.uk
Mon Feb 27 22:18:27 GMT 2006
Richard Forster wrote:
> Not sure I understand this. You may need pictures and crayon to help me.
>
> Stuart's PC and router are different boxes and so don't trust each
> other, right?
> He runs a software firewall on the PC that assumes the router offers no
> protection at all. He runs any available firewalling on the router as if
> it is the only thing protecting the PC, right?
>
> OK, I'm paranoid. Doesn't mean they're not out to get me.
>
> What was the vulnerability on the PC that allowed his box to be
> compromised? A vulnerability on the router, if exploited, only allows a
> more direct attack against the PC, ie it allows an attack against a
> NATted ip address. Also, the only conexant vulnerability I could find
> with a quick search only allowed DoS attacks by resetting the router
> config. The vulnerability won't touch the PC itself.
>
> What am I missing from this? Zero day exploit, poorly configured services?
>
> Don't get me wrong, what happened was horrible for Stuart, but a router
> vulnerability shouldn't take a PC down.
>
> Puzzled.
Geoff may've got the wrong end of things. I never mentioned the PC had
been compromised, just the router.
--
Stuart "Sslaxx" Moore
http://sslaxx.livejournal.com/
More information about the Malvern
mailing list