Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: On classifying attacks

from [Crispin Cowan] Network Security [Permanent Link]
Subject: Re: On classifying attacks
Date: Tue, 19 Jul 2005 06:42:21 -0700 
Black, Michael wrote:

You might try re-using the rather large effort that went into the CERT
taxonomy:
http://www.cert.org/research/taxonomy_988667.pdf

You'll note the complete lack of "local" and "remote" in the taxonomy.
 

That pretty much tells me everything I need to know about whether I want
to use that taxonomy :)


Remote exploit of Bind (causing "rm -r /*" to be executed):
Attack:
      Tool: User Command
      Vulnerability: Design
 

"Design"?!


If you really want to stick with "remote" and "local" I think you can
define them thusly:
Remote -- control/access of resources occurs from outside the
machine/network
Local -- control/access of resources occurs on the local machine (i.e.
no network connection required)
 

Ok, but I had no trouble with those definitions in the first place, and
so far you have not captured the distinction Derek was asking about.


Using this definition the email example is local and both bind examples
are remote.

.. and any definition that classifies the e-mail example as "local" is
just broken.

Crispin
-- 
Crispin Cowan, Ph.D.                      http://immunix.com/~crispin/
Director of Software Engineering, Novell  http://novell.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] Mozilla cleartext credentials leak bug report to excuse myself (Re[2]: NTLM HTTP Authentication is insecure by design - a new writeup by Amit Klein), 3APA3A
Next by Date:  Re: SiteMinder Multiple Vulnerabilities (solution), Williams, James K
Previous by Thread:  RE: On classifying attacks, Black, Michael
Next by Thread:  Re: On classifying attacks, Technica Forensis
Indexes:  [Date] [Thread] [Top] [All Lists]