![]() The firewall passes TCP/443 and TCP/80 because that's needed for this application. Since the only way to drop files is to be a logged in user, the writer of the asp page decided to rely on file-level rights to permit people to upload data. There is a script, that drops attachments in a certain directory so they can be appended to calendar events. An AV alarm on a server can be a very good indication that something bad happened that needs expert review.įirewalls don't protect against a badly designed application that can get past the firewall.įor example, lets take a hypothetical cross-site scripting vulnerability. That malware may not be infecting the server but it can infect other clients. If that server allows users to upload any kind of data at all to it (such as all web servers doing anything except serving static pages) it needs AV software. File-level AV is needed on Servers, it's just the attack vector that's different. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |