On Thu, 30 Nov 1995 20:08:22 -0800 Lee Gunter said:
>At 03:45 PM 11/30/95 EST, you wrote:
>>Hmmm... someone not long ago (Guy Smith?) figured out a way with DTC-Manager
>>to telnet to a DTC port and loop a cable over to an adjacent port as a quick
>>and dirty way to get telnet access to the system.  Wonder if this scheme
>>would work if you ran a cable to the support modem port to get the console
>>via telnet?  Anyone tried?  It would certainly be a neat trick...
>
>Jeff - why would you want to open up your system console via Telnet?  Isn't
>that inviting a hack from anyone who might happen into your network?  (I
>know ... the network should be protected from the outside, but it *HAS*
>happened.)  Also, it seems to me that it's ultimately easier to dial in
>"legally" - but then, I tend to be conservative where my company's systems
>are concerned.  Finally, someone still has to enable the Access Port/User
>Port no matter how you get in! :->>
 
In this case, it's a restricted segment, the support modem in question is
an antique HP Support Modem (1200 baud max), and I'd rather trust three
levels of router filtering than trust "War Games" autodialers to find our
modem lines (is your modem on the same PBX as your company?  not a major
problem if not).  Nothing is goof-proof if you're trying to provide some
form of off-site access short of leased telephone lines or private WANs.
But I didn't intend this to be a security debate... is it "possible" to
do first off, then let me decide if it's a "smart" thing to do :-)
 
Jeff Kell <[log in to unmask]>