[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: comments

To: "Smith, Donald" <Donald.Smith@qwest.com>
Subject: RE: comments
From: Dan Hollis <goemon@anime.net>
Date: Mon, 16 Jun 2003 16:00:08 -0700 (PDT)
Cc: "George M. Jones" <gmjones@mitre.org>, <opsec@ops.ietf.org>
In-reply-to: <2D00AD0E4D36D411BD300008C786E4240D558E95@Denntex021.qwest.net>

On Mon, 16 Jun 2003, Smith, Donald wrote:
> > On Mon, 16 Jun 2003, George M. Jones wrote:
> > > Requirement:
> > > The device MUST NOT allow any remote access for management without
> > > explicit configuration of authenticaiton and authorization.
> > > Example:
> > > It should not be possible to use a well know default 
> > password to remotely
> > > manage a newly installed device using standard management protocols
> > > (telnet, SNMP, SSH ...) manage a newly installed device on any externally acessable interface.
> What I am worried about is someone moving telnet to port 53 and saying its non standard
> so it passes are requirement. 

It wouldnt pass the requirement stating explicit configuration of 
authentication and authorization.

-Dan
-- 
[-] Omae no subete no kichi wa ore no mono da. [-]

References:
- RE: comments
  - From: "Smith, Donald" <Donald.Smith@qwest.com>

Prev by Date: RE: comments
Next by Date: Re: comments
Previous by thread: RE: comments
Next by thread: RE: comments
Index(es):
- Date
- Thread