[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: hacking the system

To: 'Steve Wolfe' <swolfe@infoave.net>
Subject: RE: hacking the system
From: Vincent de Lau <Vincent.de.Lau@tridion.com>
Date: Fri, 18 Aug 2000 10:19:30 +0200
Cc: 'firewallsListsGNACNET' <firewalls@Lists.GNAC.NET>


    [ Part 1, Text/PLAIN (charset: ISO-8859-1 "Latin 1")  27 lines. ]
    [ Unable to print this part. ]

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]


> 2) Question ..
> I would think opening up the MS SQL port across the Internet
> is dangerous - what
> are some thoughts on having a database port open on the
> Internet?  I know it
> scares me - but it would provide a answer to a problem that I
> may have to solve
> soon.
>

Maybe a good idea to use a VPN? We run a lot of services (Exchange, NT
Domain, Backup software) accros a VPN, The offices are interconnected
using VPN's acros the internet, and home users can also setup a VPN. Only
then you are allowed (and able, because of Private IP space) to access
resources behind the firewall.

You should make sure that you can access the desired subnet over the VPN.
I encountered a problem when it tried to access servers in the DMZ
because traffic that comes over the VPN is trown out on the trusted
network, and can't route back.


Vincent de Lau
 System Administrator / MSCE

 Tridion (http://www.tridion.com)
 mailto:Vincent.de.Lau@tridion.com

Prev by Date: Re: hacking the system
Next by Date: RE: Solaris and NT Password Synchronization
Prev by thread: Re: hacking the system
Next by thread: Re: hacking the system
Index(es):
- Date
- Thread