Mailing-List:	contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe:	<mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive:	<http://sources.redhat.com/ml/cygwin/>
List-Post:	<mailto:cygwin AT sources DOT redhat DOT com>
List-Help:	<mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender:	cygwin-owner AT sources DOT redhat DOT com
Delivered-To:	mailing list cygwin AT sources DOT redhat DOT com
Message-Id:	<5.0.2.1.0.20010710214050.00ad6308@mail.sprintsoft.com>
X-Sender:	carl-7350 AT mail DOT sprintsoft DOT com
X-Mailer:	QUALCOMM Windows Eudora Version 5.0.2
Date:	Tue, 10 Jul 2001 21:40:53 +1000
To:	cygwin AT cygwin DOT com
From:	Carl Masens <carl AT msti DOT com DOT au>
Subject:	inetd security issues
Mime-Version:	1.0

In wanting to run the inetd ftp server on my cygwin/win2k box I have had 
the following exchange with my admin:

       me:
What have I got installed (I hear you thinking)? I have installed Cygwin 
(http://www.cygwin.com) and run the inetd application, having removed all 
entries but specific user accounts from /etc/passwd except the SYSTEM and 
ADMINISTRATORS.

admin:
Seeing as you're using inetd, I presume it leaves ports open for access? 
Which ports are open? This is more relevant that enabling or disabling user 
accounts, as most attacks involve vulnerabilities in software listening on 
a particular port. How open to buffer overruns is Cygwin? What I'm getting 
at is will a buffer overrun just crash the program/API/OS or will it allow 
code to be executed locally as SYSTEM or ADMINISTRATOR?

so, can anyone answer these questions from my admin?


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

- Raw text -