[NCLUG] Re: ipchains and firewalls

rosing at peakfive.com rosing at peakfive.com
Fri Jan 25 15:25:07 MST 2002


>You should be aware that opens not only the Xserver system (presumably your home desk top) to
>attack, but every machine that has a client that can be manipulated that is currently displaying
>on the X server (presumably one or machines behind a firewall), especially shell windows. Depending
>on the window manager, a script can toggle thru every open window and send it a series of commands
>designed to compromise common clients, with a good probablity of getting connectivity back to a
>control site on nearly every machine with clients on remote server (desktop).

That might piss some people off.

In the meantime, I tried turning off the hole using ipchains and
setting to REJECT what used to be ACCEPT and it didn't work.  Any idea
why? 

I also noticed that after starting an X app and then running
"xhost -" I couldn't start any new X apps but I could still run the
one that was going. Is this a feature, or a bug?  I don't mind opening
a hole, starting a job, and closing the hole, if it'll really close.

Thanks to everyone that's replied so far.

Matt




More information about the NCLUG mailing list