On Thu, Aug 30, 2007 at 08:09:44PM +0200, Casper.Dik at Sun.COM wrote: > > >Norm Jacobs writes: > >> John Plocher wrote: > >> > Darren J Moffat wrote: > >> > Q: is there anything I could do to you or find out about you at this > >> > point, before any print jobs are sent? > >> NO > > > >Not quite true. You'll have an open UDP port to receive those SNMP > >replies. If a Bad Guy on the network can forge packets that cause > >your daemon to malfunction, then he can potentially get access to > >whatever privileges your daemon has. > > > >It's _at least_ the classic open-port problem. > > And it's detected in port scans which generally upsets customers.
What if the software uses only "connected" UDP sockets? Will UDP datagrams sent to that port by nodes which are not the remote side of a connected UDP socket elicit an ICMP? Nico --
