world viewable

Jamie Baddeley jamie.baddeley at vpc.co.nz
Wed Oct 8 02:03:50 CEST 2003

Previous message: world viewable
Next message: Invalid values for service after changes to config files
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 08 Oct 2003 10:32, Mike McClure wrote:
> > We've been using IP based authentication with nagios, instead of
> > passworded access.  In the beginning it was easier, but DHCP is making
> > this a pain.
>
> Not to mention that stealing an IP address is extremely simple.

My reply is heading OT, but anyway,

Stealing an (public) IP address is simple - but is only any good for DoS 
attacks, and actually presents no risk here.

The reason is that routing will route back to the genuine owner/user of the 
said IP address. 

Security risk increases greatly if the h4xx0r can a) spoof your ip address 
and b) grab your ASN and change gloabl BGP routing table to suit.

All bets are off for locally connected h4xx0rz of course. Which is exactly 
the problem with Dan's situation (DHCP etc).

Anyway, enough from me. Normal programming will resume shortly.

:-)

jamie

-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

Previous message: world viewable
Next message: Invalid values for service after changes to config files
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list