problemi di sicurezza in iptables
Federico Feroldi
federico a iscanet.com
Mer 18 Apr 2001 11:08:26 UTC
per chi non l'avesse ancora letto...
http://netfilter.samba.org/security-fix/index.html
If an attacker can establish an FTP connection passing through a Linux
2.4.x IPTables firewall with the state options allowing "related"
connections (almost 100% do), he can insert entries into the firewall's
RELATED ruleset table allowing the FTP Server to connect to any host and
port protected by the firewalls rules, including the firewall itself.
Federico Feroldi
-
: freelance programmer and sysadmin
: http://www.pixzone.com/
Maggiori informazioni sulla lista
Lug
|
