Hi :
If you do anything sitting in that machine, everybody that connect by PcAnywhere can
do the same from anywhere.
Bye,
Roberto.
-Mensaje original-
De: Alan Blackwell [mailto:[EMAIL PROTECTED]]
Enviado el: viernes, 07 de junio de 2002 15:44
Para: [EMAIL PROTECTED]
Asunto: PC
IP forwarding disabled means if a packet comes in on the external network interface,
it will not be forwarded, or routed, to the internal network.
However, with PC Anywhere, packets originating on the machine are not considered
forwarded, and someone using PC Anywhere to gain access to the
Well, you have to have port forwarding for ports 5631 (tcp) and 5632 (udp)
turned on, and then it will work.
If you can connect directly to a PC on port 5631/5632 from the outside
and its running in pcanywhere gateway mode, and that inside PC has
multiple IP's or access to the internal network,
Use fport, or Active Ports to find out what is listening on those pc's.
Its probably some network app you have running, or users have running on
their pc's.
Don't trust port lists, as almost every app that runs tcp/ip can be
customized to what port you want it to run on.
-Original
If PCAnywhere is installed on the server, the support people are able to
control the server completely. In most cases, people who support server
software using PCAnywhere (in my personal experience) require (demand)
Administrative access. If this is the case, the supporters would be
able to do
Has anyone in this group had any experience with Spice and SPADE? They can be found
here:http://www.silicondefense.com/software/spice/index.htm
Are there any other projects that are more mature in this process?
Thank you,
Charles
I know I've seen this question asked before but can't seem to find the
information.
How difficult is it to Sniff Internet traffic?
If I am sitting in my home in Bug Tussell Pennsylvania, can I monitor
someones Internet connection coming from Silicon Alley California without
their
In addition to the personal firewall consider a Call-Back. Where the
users home phone is statically entered and when the a call is placed
into the modem, the connection is terminated and the modem automatically
calls the users home computer back to establish the connection.
-Original
Assuming she only dials out, having a modem on her desktop is not really
that big a security risk. I would simply lock down her desktop (using NT
workstation or 2000) so she cannot install any software or configure the
hardware.
At 07:45 AM 6/10/2002 +0300, [EMAIL PROTECTED] wrote:
linux is
Hi:
I saw in the archives a note requesting people's opinion on ISS vs NFR, but I didn't
see any responses. I'd like to hear people's opinions of these two products and
Cisco's entercept for HIDS and NIDS.
thank you
Becki Kain
Is the modem sitting by her? Sounds like it. Uss the on/off relay for
when she isn't using it...
Jim
Jonathan Strine wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
First, I am assuming that your user is using the modem on her PC to
*make* the call to the legacy billing system
If someone connects to PC Anywhere from outside the internal network,
through the card that faces the external network, can they can access to
the internal network?
i'm going to have to say yes. ip forwarding, in my experience,
constitutes the ability of packets traversing a router or host
You're making this more complicated than it needs to be. The simplest and most secure
method is to use a callback system
-Original Message-
From: Chris Berry [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 07, 2002 2:08 PM
To: [EMAIL PROTECTED]
Subject: Modem Security
I think I've
Hi
Just wanted to know if anyone in this group has appeared for the
SAGE certification.
Does anyone know if it is a good certification to have (job wise/in
general)?
Thanks
amit
I am going to deploy tcpdump on a full duplex LAN tap capturing the full
packets (-s 1500)
Does anyone know what the processor/ram requirements would be to just
write these packets to a file.
I don't think it would take much but finding specifics is proving to be
difficult.
Thanks,
Justin.
you should be able to access the internal network from the PCAnywhere
session window on the remote PC.
-Original Message-
From: Alan Blackwell [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 07, 2002 9:44 AM
To: [EMAIL PROTECTED]
Subject: PC Anyhwere and IP Forwarding
Hi,
Can anyone
I just wanted to ask if anyone knows what port
42510
would be doing open on a number of machines in my
office's network. This includes almost all
windows machines, 2000, 98, and NT...
Since I have no way of knowing what apps you have on
your network/systems, might I suggest that you
You can find an interesting independent comparison at:
http://www.nss.co.uk/ids/index.htm (pretty old tests)
a new version is upcoming and expected in the next few days,
ISS RS 7.0 and the new NFR platform will be tested.
BB
- Original Message -
From: ABRAHAM AJI [EMAIL PROTECTED]
Well, I really don't think pcAnywhere is a secure way to access the
server. The only acceptable secure configuration using pcAnywhere to me
would be install a ssh host on the server, like vShell from
www.vandyke.com and then using pcAnywher on top of a ssh tunnel. Not
mentioning that pcAnywhere
Tier-3 Huntsman will so exactly what you wanted, you can also centralise all
your logs into one database on a Solaris machine
Take a look at www.tier-3.com
Good luck
- Original Message -
From: Rich Henning [EMAIL PROTECTED]
To: John Horne [EMAIL PROTECTED]
Cc:
Sent: Saturday, June
You might have CA's InoculateIT. The AV product uses 42510 and 42509
and 42509 to communicate between the client and the admin. Check to see
if your organization uses Computer Associates Anti-virus product.
-Original Message-
From: Michael Krymson [mailto:[EMAIL PROTECTED]]
Sent:
This works here:
egrep 1433|1434 /var/adm/alertlog|awk '{print $11}'|sort -u|awk -F
: '{print $1}'|sort -u|wc -l
Thanks,
Ron DuFresne
On Fri, 7 Jun 2002, Matthew Carpenter wrote:
As in the case with our recent new SQLSnake friend, is there a good way to
count the number of 1433 hits
22 matches
Mail list logo