On Sat, 2005-12-17 at 15:31 -0500, Jeff Spaleta wrote: > And when the user doesn't know its upnp enabled application? Or when > the application is malicious and misrepresents what its suppose to be > doing and does upnp operations withuot clear consent from the user? Then you have far worse things to worry about than port forwarding. It could rm -rfv ~/*. It can still make outgoing connections to a server and accept commands, and upload personal info. It can still participate in a DDoS. Etc. Once malicious software has made it in behind your firewall, you've already lost. Game over man. Nuke the machine from orbit. Some port forwards are the least of your worries at this point.
Description: This is a digitally signed message part