RE: publications concerning port forwarding

To:	<pen-test@securityfocus.com>
Subject:	RE: publications concerning port forwarding
From:	"Wiedemann, Adrian" <Adrian.Wiedemann@rz.uni-karlsruhe.de>
Date:	Wed, 11 Apr 2007 09:52:43 +0200
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
In-reply-to:	<Pine.LNX.4.58.0704101707530.6970@shell.datasync.com>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<Pine.LNX.4.58.0704101707530.6970@shell.datasync.com>
Resent-date:	Wed, 11 Apr 2007 02:00:19 -0600 (MDT)
Resent-from:	pen-test-return-1078483907@securityfocus.com
Resent-message-id:	<20070411080019.632402379B4@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com
Thread-index:	Acd76ao5sOAjsnETRAqaRpVrGrgzcwAI1Fng
Thread-topic:	publications concerning port forwarding

Hi,

> to forward ports on the PIX from the Internet to internal servers.  I
> have
> explained that port forwarding is very risky but they don't seem to
> understand.  Are there any publications that can be used to show the

It boils down to the Exchange-Server setup. If he is using a
frontend-backend Exchange configuration and requests port 443 to be
forwarded, I see no inherent security concerns about this. In general, I see
no security implications about forwarding ports. I just depends on the
servers, on which these ports are forwarded to. 

Regards, Adrian

Ret

smime.p7s
Description: S/MIME cryptographic signature

<Prev in Thread]	Current Thread	[Next in Thread>
publications concerning port forwarding, Jason L. Ellison Re: publications concerning port forwarding, Ben Nell Re: publications concerning port forwarding, vtlists Re: publications concerning port forwarding, Brendan Murray RE: publications concerning port forwarding, Wiedemann, Adrian <= RE: publications concerning port forwarding, Jason L. Ellison RE: publications concerning port forwarding, Wiedemann, Adrian Message not available RE: publications concerning port forwarding, Wiedemann, Adrian RE: publications concerning port forwarding, Jason L. Ellison Re: publications concerning port forwarding, Jamie Riden RE: publications concerning port forwarding, Jason Rahl RE: publications concerning port forwarding, Thomas W Shinder Re: publications concerning port forwarding, vtlists Re: publications concerning port forwarding, Thor (Hammer of God)

Previous by Date:	Re: publications concerning port forwarding, vtlists
Next by Date:	Re: publications concerning port forwarding, Jamie Riden
Previous by Thread:	Re: publications concerning port forwarding, Brendan Murray
Next by Thread:	RE: publications concerning port forwarding, Jason L. Ellison
Indexes:	[Date] [Thread] [Top] [All Lists]