[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: simple security
In your letter dated Tue, 23 Mar 2010 18:12:49 +0100 you wrote:
>There are remote holes in old unpatched systems (which are generally so old
>that they don't support IPv6 anyway). Oh sure, there are plenty of holes in
>modern systems (that do support IPv6) but not the kind that stateful
>firewalls protect against. Last time I checked stateful firewalls did not
>protect from browser and web server bugs nor from harmful email.
So you are saying that the kinds of holes that stateful firewalls protect
against are only to be found in old systems, and somehow in the past years
the state of the art has advanced enough that new software has absolute none
of those holes?
Somehow, bugtraq seems to be full of all kinds of remote holes in current
systems.
A quote from just a random post:
"A remote attacker can read, list and retrieve nearly all files on
"the System remotely. Required is a valid samba account for a share
"which is writeable OR a writeable share which is configured to be
"a guest account share, in this case this is a preauth exploit.