Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Shared drives through a firewall

from [mcclenbw] Network Security [Permanent Link]
Subject: RE: Shared drives through a firewall
Date: Thu, 22 Mar 2007 09:54:30 -0400 
Seems to me, if the client is willing to do it you can't really call it
an "untrusted server."  Foolishly trusted maybe...

I'm also confused that if I have to go through two firewalls to get to
it, how can it be considered to be in a DMZ?  Unless you're client is
running two firewalls, to which I'd have to ask, why?  Two is no better
than one once a port is open on both.

That aside, I'd think you have to learn more about this other server to
properly analyze the risk.  Is it truly in a DMZ or is netbios only open
to IP addresses/ranges of it clients?  Does it support, better yet,
require SMB signing?




-----Original Message-----
From: listbounce@securityfocus.com
[mailto:listbounce@securityfocus.com] On Behalf Of aeheald@gmail.com
Sent: Wednesday, March 21, 2007 10:01 PM
To: focus-ms@securityfocus.com
Subject: Shared drives through a firewall

Hello Group;

I am trying to persuade a client NOT to map a drive through two
firewalls to
an untrusted server in a DMZ to run an application. I've tried

Googling

Netbios and security, but get so many entries as to be useless.

Other than the latency issues, and my ten cents that it seems to me to
be an
enormously foolish idea, can you folks offer me any further

ammunition?


Big Thanks if you can

Eigen
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Shared drives through a firewall, aeheald
Next by Date:  Re: Shared drives through a firewall, tux
Previous by Thread:  Re: Shared drives through a firewall, Mailing Sécurité Focus
Next by Thread:  Re: Shared drives through a firewall, Nicolas RUFF
Indexes:  [Date] [Thread] [Top] [All Lists]