Date: Sun, 26 Sep 1999 09:22:52 -0600 From: Brett Glass <brett@lariat.org> To: Ollivier Robert <roberto@keltia.freenix.fr>, freebsd-security@FreeBSD.ORG Subject: Re: default rc.firewall Message-ID: <4.2.0.58.19990926092055.0472f9d0@localhost> In-Reply-To: <19990926123539.C18956@keltia.freenix.fr> References: <4.2.0.58.19990924115715.0480e340@localhost> <4.2.0.58.19990924113626.0480db00@localhost> <4.2.0.58.19990924111600.04809a90@localhost> <3.0.5.32.19990923152232.007c94c0@memes.com> <199909241733.LAA27644@mt.sri.com> <4.2.0.58.19990924113626.0480db00@localhost> <199909241749.LAA27881@mt.sri.com> <4.2.0.58.19990924115715.0480e340@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
At 12:35 PM 9/26/99 +0200, Ollivier Robert wrote: >Anyone running IIS on a public machine is waiting/asking for security problems. You'd be amazed at how many folks are ABSOLUTELY ADAMANT about it. Microsoft has gotten them "locked in" via SQL Server and ASPs, and they are in denial about the risks. I try to help them firewall, but warn them that firewalls cannot do much good when you can break in via HTTP and exploit the hack via port 80. --Brett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.2.0.58.19990926092055.0472f9d0>