Re: defeating firewalls made easy

In article <lhkme.2756$rb6.757@lakeread07>,
itoii 3uvu <itoii3uvu@hotmail.com> wrote:
:http://www.debka.com/article.php?aid=1031

;the criminals once again demonstrate the historic illusion of computer
;security . . .

Not quite. The article deals with some security breaches made
possible by use of PROMIS software. But,

http://www.fromthewilderness.com/free/ww3/magic_carpet.html

"The one essential weakness of Promis is that it must be physically
installed on a targeted computer for it to be effective."

PROMIS is pretty powerful software, but before we could make
any conclusions about "illusion" of computer security, we would
have to know more about matters such as whether it can disable
firewalls or firewall logging, or whether it communicates via
other mechanisms such as would be used by "bugging".

Everyone who does non-trivial computer security work knows
that computer security is not an absolute but rather a matter
of how determined (and well-funded) your adversary is.

For example, how do you -know- that your reputable premises
security company doesn't have a mole who plants silent override
mechanisms to allow your physical security to be breached?
How do you -know- that the company wasn't shown the outside of
a sealed classified court order that required them to give an
intelligence agent unfettered access and threatened with
trumped-up theft/ fraud/ pedophilia / terrorism charges if they dared
even hint of the visit to anyone?

-- 
Usenet is like a slice of lemon, wrapped around a large gold brick.