Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-27 Thread Jan Muenther
> No I would not I would use an ids with properly tuned sigs for the terminal > server abd then connect the terminal server via a proxy like vnc running > something over freebsd or linux. I would never allow a windows terminal > server to be directly be connected to the net... Spot the two obviou

RE: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-27 Thread ALD, Aditya, Aditya Lalit Deshmukh
>It's also only possible when you've got NetBIOS/CIFS open to >the Internet, Yes I know... That is why I said security thru obscurity > With this argumentation, you could sell your firewalls. No I would not I would use an ids with properly tuned sigs for the terminal server abd then connect t

Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-27 Thread Jan Muenther
> There are ways to find out the usernames that are admin they begin with 500_ > ( do a Google search if you want ) > > Any script kiddy worth his salt will tell u this... So this one is off > because renaming admin account will only be security thru obscurity witch is > not good for the internet.

RE: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-27 Thread ALD, Aditya, Aditya Lalit Deshmukh
>Of course, one of the very first things you should do on a Windows box >is rename the administrator account, so this kind of blind >brute-forcing is not possible. There are ways to find out the usernames that are admin they begin with 500_ ( do a Google search if you want ) Any script kiddy

Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-26 Thread Jonathan Rickman
On Tue, 25 Jan 2005 14:38:30 -0600, Curt Purdy <[EMAIL PROTECTED]> wrote: > The problem with terminal server is not any vulnerablities that can be > exploited, but the fact that administrator can be bruteforced (6 attempts > followed by reconnect) and that it is screaming its existence on port 388

RE: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-25 Thread Todd Towles
day, January 25, 2005 3:29 PM > To: full-disclosure@lists.netsys.com > Subject: Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities > > > On Jan 25, 2005, at 2:38 PM, Curt Purdy wrote: > > > Daniel Sichel wrote: > > > >> Naturally I > >> d

Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-25 Thread Steve Tornio
On Jan 25, 2005, at 2:38 PM, Curt Purdy wrote: Daniel Sichel wrote: Naturally I don't like this answer because of horror stories I have heard about Terminal server. They claim there are no unfixed vulnerabilities to Terminal Server on Windows Server 2000 Service Pack 4. The problem with terminal

RE: [lists] [Full-Disclosure] Terminal Server vulnerabilities

2005-01-25 Thread Curt Purdy
Daniel Sichel wrote: > Naturally I > don't like this answer because of horror stories I have heard > about Terminal server. They claim there are no unfixed > vulnerabilities to Terminal Server on Windows Server 2000 > Service Pack 4. The problem with terminal server is not any vulnerablitie