Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
Message-Id: <5.0.2.1.0.20010710214050.00ad6308@mail.sprintsoft.com>
X-Sender: carl-7350 AT mail DOT sprintsoft DOT com
X-Mailer: QUALCOMM Windows Eudora Version 5.0.2
Date: Tue, 10 Jul 2001 21:40:53 +1000
To: cygwin AT cygwin DOT com
From: Carl Masens <carl AT msti DOT com DOT au>
Subject: inetd security issues
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed

In wanting to run the inetd ftp server on my cygwin/win2k box I have had 
the following exchange with my admin:

       me:
What have I got installed (I hear you thinking)? I have installed Cygwin 
(http://www.cygwin.com) and run the inetd application, having removed all 
entries but specific user accounts from /etc/passwd except the SYSTEM and 
ADMINISTRATORS.

admin:
Seeing as you're using inetd, I presume it leaves ports open for access? 
Which ports are open? This is more relevant that enabling or disabling user 
accounts, as most attacks involve vulnerabilities in software listening on 
a particular port. How open to buffer overruns is Cygwin? What I'm getting 
at is will a buffer overrun just crash the program/API/OS or will it allow 
code to be executed locally as SYSTEM or ADMINISTRATOR?

so, can anyone answer these questions from my admin?


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/