From owner-freebsd-isp Wed Nov 5 17:12:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA25153 for isp-outgoing; Wed, 5 Nov 1997 17:12:05 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA25136 for ; Wed, 5 Nov 1997 17:12:01 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id RAA12058; Wed, 5 Nov 1997 17:11:25 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma012054; Wed Nov 5 17:11:00 1997 Received: (from archie@localhost) by bubba.whistle.com (8.8.5/8.6.12) id RAA18423; Wed, 5 Nov 1997 17:10:59 -0800 (PST) From: Archie Cobbs Message-Id: <199711060110.RAA18423@bubba.whistle.com> Subject: Re: Security problem/oversight with user PPP! In-Reply-To: from Dru Nelson at "Nov 5, 97 08:55:29 am" To: dnelson@slip.net (Dru Nelson) Date: Wed, 5 Nov 1997 17:10:59 -0800 (PST) Cc: brandon@roguetrader.com, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dru Nelson writes: > > > At the very least it should bind to port 3000 on LOCALHOST, why does there > > need to be global access to it? > > I agreee, it shouldn't be on by default. It is good, though, when > you want to work on the PPP client on the far end when getting > things working. Doesn't completely fill the hole... :-) I can still take a UNIX machine on the same network as yours, disable my loopback interface, and set a route to 127.0.0.1 via your machine, and then telnet to it. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com