Global Socket Security
1 posts in topic
Flat View  Flat View
TOPIC ACTIONS:
 

Posted By:   Lxir_Lxir
Posted On:   Wednesday, August 13, 2003 03:51 AM

Hi !

I would just know if there are some risks for a server machine where a classic tcp server program is running on ?

I don't worry about my own service (because it's a game !) but about other applications which are running on the same machine... Can an hacker take control ? Can he deny services ?

Thanks.

Re: Global Socket Security

Posted By:   Anonymous  
Posted On:   Wednesday, August 13, 2003 04:38 AM

The short answer is yes, a hacker could take control of your machine, or take it down (through a massive attack through your port)


The long answer is "depends", there are a lot of possible situations where security could be compromised, as, for example,


  • How good is your code? Is it programmed in such a way remote user could gain control on your local machine?

  • If it's programmed en Java, your security is compromised by JVM security issues

  • If your application consumes a lot of resources for every user connection (like creating new Threads, new enviroments, etc.), this could make your program running very slow and could have consequences over all your server.

  • Is your code running as a privileged user (Administrator, root, ...), or as a normal user?
  • ...

As you can see when you open a service to a set of users (controller or uncontrolled), you have really a lot of possible situations in which security is compromised.


Bye,

David.

About | Sitemap | Contact