BadMoFo
02-18-2004, 01:14 AM
what kind of security enhancements can I use to convice my boss that it would be secure hosting a t:v server on my companies oc3?
the more technically explicit the better.
the more technically explicit the better.
dear sierra, what about vulnerability of t:v's open ports to corporate networks...Pages :
[1]
2
BadMoFo 02-18-2004, 01:14 AM what kind of security enhancements can I use to convice my boss that it would be secure hosting a t:v server on my companies oc3? the more technically explicit the better. TheGhost 02-18-2004, 01:18 AM zonealarm pro + bonzai buddy Colosus 02-18-2004, 01:18 AM Ummm, open ports are not the danger, it is what runs on those ports that is. The worst I can think of is perhaps a buffer overflow or a server crash. No data vulnerabilities or access to internal networks. It is a game ffs. [57th]cneal 02-18-2004, 01:19 AM What exactly could they do to your machine? Kick-ban everyone from the server? I don't get it. Edit: Ohh yeah. I doubt the server program would be that unsecure unless it has a built in dos prompt :dumbn'stupid: TheGhost 02-18-2004, 01:22 AM hello you sagits are not understanding him, he needs bonzai buddy Plasma 02-18-2004, 01:45 AM Youd run it in a protected user jail anyway, unless you run the server as root on the companys fileserver, im sure you wont have a problem... Sir Lucius 02-18-2004, 02:41 AM I don't think bofo needs to be the admin of any servers, so this should be a moot discussion. BadMoFo 02-18-2004, 02:28 PM Im just wondering what kind testing if any has been done. or will I have to test it myself? and what are some other ways to lock down the server? Sir Lucius 02-18-2004, 02:35 PM You worry too much about the details. The only important thing is the server name. A good server needs a good name, so come back when you've got a real ringer. Apotheosis 02-18-2004, 02:36 PM Apotheoserv GIMPbeowulf 02-18-2004, 03:18 PM I do believe there are programs to DOS machines that run UT servers. Don't know much beyond that. BigPappa 02-18-2004, 05:18 PM You worry too much about the details. The only important thing is the server name. A good server needs a good name, so come back when you've got a real ringer. :lol: :rofl: :lol: Data 02-18-2004, 05:27 PM I always called my server Data's Ski Lodge. :shrug: Yogi 02-18-2004, 05:28 PM Just put it in your DMZ BadMoFo 02-18-2004, 09:40 PM yeah Im guessing in the DMZ with no domain rights ought to do it... but Im curious if sierra is looking at this at all Locke355 02-18-2004, 11:23 PM what is wrong with a little buffer overflow leading to the execution of arbitrary code on a corporate network, between friends? Colosus 02-19-2004, 01:22 AM If you don't segregate the external servers from the internal network in some way, you get what you deserve. BadMoFo 02-19-2004, 03:42 AM like I said before dumba-I mean colosus I just curious if sierra has any info on this subject. what is wrong with a little buffer overflow leading to the execution of arbitrary code on a corporate network, between friends? you. stuf. Skeletor666 02-19-2004, 02:06 PM Just steal an OC3 duh? Fox McCloud 02-19-2004, 02:21 PM Just don't connect it to the internet and you'll have nothing to worry about, too many haxorz. There, problem solved. | ||