Router/Firewall Recommendation
Reuben D. Budiardja
techlist at voyager.phys.utk.edu
Fri Jun 25 13:00:10 UTC 2004
On Friday 25 June 2004 01:20 am, Otto Haliburton wrote:
> most users networks ain't worth the
> time and effort to hack it,
I'm probably going no where by replying this, except that I hope no one else
gets this completely wrong view about security.
My friend here used to say "why would someone crack my machine? I have nothing
of value". Well, the problem here is not the value of your machine. A cracked
machine can be used to do much more malicious stuff. It's worse when the
machine is part of a larger local network. Since other computers in a network
is usually set up to trust a login from their own domain (ie. SSH login, and
put "ALL :. mydomain.edu" in /etc/hosts.allow), a cracker can easilly get
into other machines in the network. *Security is alwasy only as good as its
weakest point*.
Coupled that with the fact that some people use the same login/password for
different machines, it's very easy for a cracker to get a pool of cracked
machines in a network to do more, much more malicious stuff. If that happens,
who'll get the first red flags ? You, the owner of the cracked machine. Not
the cracker, but you. It does not matter if it's eventually known that your
machine was cracked, you and your network still get the red flag from others,
eg. your collaboration, your business partners, you named it .
The point is, never assume that since you have nothing of value, you're not
worth to get cracked. If you have that attitude, the possibilty is that you
will get cracked eventually.
Security is only as good as its weakest point. And the weakest point is
usually the human factor.
RDB
--
Reuben D. Budiardja
Department of Physics and Astronomy
The University of Tennessee, Knoxville, TN
---------------------------------------------------------
"To be a nemesis, you have to actively try to destroy
something, don't you? Really, I'm not out to destroy
Microsoft. That will just be a completely unintentional
side effect."
- Linus Torvalds -
More information about the redhat-list
mailing list