>And, there is no way to predict how long the user will >be on line. With a static IP number -- those insurance >companies, banks, whatever -- the network always has >the same address and is always available. With dialup, >users come and go and it's difficult -- if not >impossible -- to reliably predict how long the dynamic >IP will be connected.
Ok guys, my two pennies worth of security musings. I don't want to alarm you but script kiddies are one thing, Kevin Mitnick, serious hackers and law enforcement agencies are another thing entirely... Agreed, nobody can predict the length of time a dial up user will retain a DHCP lease but so what? ISPs are broken into quite regularly and their internal information can be stolen or changed. You also don't necessarily need an IP address if you have the actual telephone number. Why didn't the FBI just install a phone tap? How many of you have seen your firewalls bouncing countless probe packets - what you won't see is the machines that are systematically scanning whole ranges of telephone numbers listening for certain tones, not IP addresses. There are also enough holes in standard software on virtually every platform to drive a water buffalo through, if you're the dedicated type. No amount of paranoia is enough! Here's my real world example: A couple of years ago I had a small home network hooked up behind a x86 Linux box running iptables, etc, all nicely patched and up to date in line with my slightly fanatical security bias :) I used a dialup 56k modem in occasional short bursts to check my POP3 mail, research a problem here and there and that was about it. One fine day I came home to find my windows workstation happily humming away and my modem furiously transmitting data, *despite* the well configured Linux firewall standing between them :( To this day I: A: Have no idea how it was done B: Grudgingly respect whoever managed it, the b*stard C: Have been 101% paranoid ever since, with no more incidents. Moral: Dialup addresses are only an obstacle, not an insurmountable barrier. You have been warned! [Mat] -- PCI-PowerMacs is sponsored by <http://lowendmac.com/> and... Small Dog Electronics http://www.smalldog.com | Refurbished Drives | -- Sonnet & PowerLogix Upgrades - start at $169 | & CDRWs on Sale! | Support Low End Mac <http://lowendmac.com/lists/support.html> PCI-PowerMacs list info: <http://lowendmac.com/lists/pci-powermacs.shtml> --> AOL users, remove "mailto:"; Send list messages to: <mailto:[EMAIL PROTECTED]> To unsubscribe, email: <mailto:[EMAIL PROTECTED]> For digest mode, email: <mailto:[EMAIL PROTECTED]> Subscription questions: <mailto:[EMAIL PROTECTED]> Archive:<http://www.mail-archive.com/pci-powermacs%40mail.maclaunch.com/> Using a Mac? Free email & more at Applelinks! http://www.applelinks.com
