Non-Root Control Of Network Devices Under Linux With System-Config-Network
This post details how to give a non-root user control over the network devices.
(more…)
January 23, 2006
January 16, 2006
IP/ARP Spoofing, TCP/IP Session Hijacking, Port Forwarding
A couple of years ago I gave a talk at Princeton University entitled “Summertime And The Spoofing Is Easy”.
(more…)
January 12, 2006
Iptables - Example Firewall Rulesets
Two example iptables firewall rulesets are provided. Both are designed for a single-homed host and utilize the stateful inspection feature of iptables for all connections.
(more…)
January 10, 2006
Security In X Windows
Imagine you are the administrator for a site that wisely doesn’t allow telnet in, but does allow ssh. What I am going to explain now is a way in which your security can potentially be seriously compromised.
(more…)
Some Security Issues With Telnet
Let’s discuss a few issues related to telnet. People are starting to get the message that it is insecure, and I hope this webpage will help. Some of the issues are a little more subtle that you might think.
A Security Weakness In NFS
When a Network File System (NFS) client host wants to access a remote file or directory, its operating system sends a request to the NFS server. The request specifies, among other things, a file identifier, the operation (read, write, change permission, etc.), and the identity of the user on whose behalf the operation is to be done.
(more…)
