Ascend Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: (ASCEND) [rootshell] Security Bulletin #16 (fwd)
Correct me if I read this wrong but the attacker has to guess the SNMP
community name, so unless it's left as default it's going to be pretty hard
to find. IMHO if you leave a system open to the internet with defaults you're
begging for trouble.
Cheers
bcurnow wrote:
> The ascend kill works, and is easy to filter across networks, but it
> doesn't look like the Ascend itself can be protected. The built in filter
> code doesn't seem to process the packet before the damage is done.
>
> I suppose this means a whole bunch of dial-up MAXs are going to be diving
> for the next 24 hours or so.
>
> ----------------- Brian Curnow ----------------
>
> ++ Ascend Users Mailing List ++
> To unsubscribe: send unsubscribe to ascend-users-request@bungi.com
> To get FAQ'd: <http://www.nealis.net/ascend/faq>
++ Ascend Users Mailing List ++
To unsubscribe: send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd: <http://www.nealis.net/ascend/faq>
Follow-Ups:
References: