26 Jan
2003
26 Jan
'03
1:56 p.m.
... If you are relying on their ACL's to protect your telnet and snmp access, but are otherwise allowing their management interfaces to hear traffic from the whole Internet, then you should turn in your badge and go back to bagging groceries or whatever it is you used to do.
Some would argue this should apply to those exposing MSSQL to the outside world such that it could even receive malicious port 1434 packets...
in fairness to microsoft, there have been worms based on apache and bind and popper and fingerd (buffer overruns) and even sendmail (wizard password) so the wide scale code review one gets from open source software engineering is only a marginal solution to monocultural weakness vectors. -- Paul Vixie