risks of protocols list?

To: <debian-firewall@lists.debian.org>
Subject: risks of protocols list?
From: <Erik.Hofmann@infineon.com>
Date: Tue, 6 Jul 2004 11:00:57 +0200
Message-id: <[🔎] 0B4CF0E5E12AE848B5924C14CA427CE13084E2@mucse202.eu.infineon.com>

Hi all,

is there any resource (book, web, articles etc) with an overview of
risks associated with particular protocols?
The goal is to give assessment statements for firewall policies quickly
and explane shortly why which port is critical under certain boundary
conditions and why others are of low risk.


E.g. like this

syslog: spoofing, denial of service..., low risk of manipulation because
protocol is simple.

telnet: clear text password eaves dropping, authentication due to week
pwd's...

ntp: authentication, manipulating of systime for... perhaps kerberos
attacks etc

ftp: unauthorized file access, many vulnerabilities of ftp servers in
the past, active ftp, clear text pwd...

http: tunneling other ports

tcp 135-137, 445 <long list of risks> ;-)

ssh: reverse tunneling...

and so on and so on...

regards

Erik

Reply to:

Follow-Ups:
- unsubscribe me
  - From: "DOMINIQUE DELACOUR" <dominique.delacour@educagri.fr>
- Re: risks of protocols list?
  - From: "Steve Melo" <smelo@communitytrust.ca>

Prev by Date: Re: Re: Incoming Message wc_auto
Next by Date: unsubscribe me
Previous by thread: Re: Re: Incoming Message wc_auto
Next by thread: unsubscribe me
Index(es):
- Date
- Thread