Ron Morita wrote:
>
> Are my desktops safe from hackers if I'm using NAT? It seems like
> perimeter scanning products won't be able to scan desktops using NAT so
> those scanners would imply my desktops are safe.
Are your desktops able to connect to the Internet? Are they connected
to the same network as some other computer that is able to connect to
the Internet? In either case, consider them NOT safe.
> Are my firewalls and
> NAT server my only vulnerabilities? Would I ever deploy an IDS system
> like ZoneAlarm or NetworkICE on desktops in a NAT environment?
Buffer overruns in E-mail headers
ActiveX components
Broken Java sandboxes
Trojan applications brought in from somewhere else
Flaws in your firewall
Flaws in your firewall setup (very common)
Viruses
Etc, etc, etc, ad nauseum
... you have a lot of vulnerabilities. It would seem to me that you
don't read Bugtraq. My advice to you is: read bugtraq. Then you'll
see where your vulnerabilities lie.
See http://www.securityfocus.com
Click forums -> mailing lists -> bugtraq
--
Mikael Olsson, EnterNet Sweden AB, Box 393, SE-891 28 �RNSK�LDSVIK
Phone: +46-(0)660-29 92 00 Fax: +46-(0)660-122 50
Mobile: +46-(0)70-66 77 636
WWW: http://www.enternet.se E-mail: [EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
