Re: Filesharing on small LAN

• Previous message: d_at_jerkface.net: "Re: Can't startx in 24b color depth mode"
• In reply to: d_at_jerkface.net: "Re: Filesharing on small LAN"
• Next in thread: marc: "Re: Filesharing on small LAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Tue, 29 Nov 2005 21:37:37 -0700
To: debian-user@lists.debian.org

d@jerkface.net wrote:
> On Tue, Nov 29, 2005 at 10:19:46AM -0000, marc wrote:
>
>> I have a share that is 3Tb. More practically, though, when a client
>> works here, connects to the network and presents a share, he would be
>> mightily peeved for all of its data to spread itself across the local
>> universe. In fact, it would present a whole bunch of legal problems, I
>> suspect.
>
> Oh, hogwash. Automatic discovery does not decrease security, it only
> increases convenience.

Depends on who you allow on your network.

In corporate environments, people have been known to allow vendors and
or people presenting information to them to plug into the corporate LAN.
  Without proper VLAN'ing or other security measures, a laptop inside
your firewall could gather some information from auto-discovery type
services.

In home environments, this probably isn't as much of a problem unless
you're into allowing people you don't trust into your house and also on
your internal network.

Like many security problems, the root cause in this example is not that
auto-discovery services are running on your network, and the "exploit"
requires multiple concurrent screw-ups through lack of thought about
security, but it *is* a case where auto-discovery of services could lead
to information loss.

Thus, the post... THINK about ALL the possibilities before stating with
certainty that ANYTHING isn't a security risk.

Nate

-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

• Previous message: d_at_jerkface.net: "Re: Can't startx in 24b color depth mode"
• In reply to: d_at_jerkface.net: "Re: Filesharing on small LAN"
• Next in thread: marc: "Re: Filesharing on small LAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages SecurityFocus Microsoft Newsletter #50 ... Subject: SecurityFocus Microsoft Newsletter #50 ... Specialist in Microsoft's Security Services Partner Program, ... Network Monitoring for Intrusion Detection ... Relevant URL: ... (Focus-Microsoft) << SBS News of the week - Sept 26 >> ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ... (microsoft.public.backoffice.smallbiz) << SBS News of the week - Sept 26 >> ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ... (microsoft.public.backoffice.smallbiz2000) Re: << SBS News of the week - Sept 26 >> ... > And he points to the info you need to put the file on the server in the ... > at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... An attacker can exploit these flaws in tandem via specially ... (microsoft.public.backoffice.smallbiz2000) << SBS News of the week - Sept 26 >> ... And he points to the info you need to put the file on the server in the ... at the network perimeter. ... The Symantec Firewall/VPN and the Gateway Security ... by the firewall at risk. ... (microsoft.public.windows.server.sbs)