Hey, very informative thread!
I have some questions regarding this issue, if i may..
Set your firewall not to reply to ICMP pings. Nobody is immune to DoS attacks, but at least this way it'll take powerful attack to saturate your whole bandwidth.
My router's firewall doesn't have a specific setting for ICMP pings, so i blocked all incoming ICMP traffic. This had a side effect: Not only i stopped to respond to pings but i lost the ability to ping others as well (like servers etc) and i don't like that. Therefore i disabled this setting.
The manual of my router mentions that it has built-in ping-flood protection, thus i should be fine? :-?
Do you know how can I test if a MUI app is vulnerable?
I'm not sure iirc, but one app which is vulnerable is an old IRC client. Probably BlackIRC and some other very old MUI progs.
Just take care that you don't use (mount) the AWNPIPE and you're safe.
APIPE: has similar problem, so take care you don't mount either AWNPIPE or APIPE:.
Hmm... I don't mount any of these devices at startup, BUT i use a nifty feature of MCP called AutoMount. It mounts devices only on demand. That is, if something makes a call to a device which is not mounted, AutoMount searches the storage/dosdrivers/ directory and the devs:mountlist and mounts the appropriate device automatically if it exists.
My question is: Is it possible for a hacker to take advantage of this feature and mount these devices from his computer or not?
- ftpd 1.2 (Oct 3 1994) has a crash bug in STAT command:
What happen is that ftpd STAT command blindly assume fopen() succeed, that is, it doesn't check against NULL result from the call. If NULL is returned ftpd will happily peek & poke zeropage, eventually causing trashing of execbase pointer (absolute address)
If i don't run an FTP server on my Amiga, should i worry about this at all?
I have disable the ftp service in db/services, along with other services which are not of any use to me.
