-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Having a security policy, coupled with (if possible) nightly
(or periodic) scans of each workstation for filenames that are
known to be installed with Kazaa will at least help you find
the program if you cannot block traffic, or have more control
ov
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
My apache server is getting hit with similar IIS-targeted requests.
Below are the most recent requests (from 10am today) for anyone
that's interested.
[12-26-01 10:19] 209.16.230.176 (-166,0) 404 "GET /scripts/root.exe?/c+dir
HTTP/1.0"
[12-26-01 10
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If it's at all feasable, i urge you to implement SSH (and
SCP for file transfers).
If you want to have a windows server, the only good server
software i know of is at http://ssh.com/ and it costs $$
but if you want to use a linux/unix machine as a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
it is my understanding that "sftp" is secure also,
in connections and data transferring.
at http://www.ssh.com/ there's a "free for non-commercial"
SSH client that i highly reccomend. it has an integrated
sFTP client that you can drag-and-drop fro
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Couldn't an ordinary user exploit this by simply modifying your
shortcut (or creating a new shortcut) that replaces "C:\...\NERO.EXE"
with a program of his choice? Assuming the "RunNERO" account is
in group Administrator, i'd imagine that quite a l
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
im pretty sure that 10.*, 127.* and 198.* are not routable
on the internet (which is why so many LANs use them), so it
looks like whatever happened to your machine is coming
from inside the LAN where your machine is hosted.
perhaps a machine that t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
i hate to pick, but if you dont have the time to read thru
established code like nmap, how are you going to find the time
to put into a new/improved stealth scan tool?
> -Original Message-
> From: roland kwitt [mailto:[EMAIL PROTECTED]]
> S
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
also, to quickly find out what a port is doing in windows:
"netstat -a" shows a rundown of what's open/listening and
where it's connected to.
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Subject: RE: Port 500
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ummm... this also happens when you click on a link
that calls a javascript function that sets your homepage.
look at the source for bessybug.com,
this.setHomePage('http://www.bessybug.com/');
...perhaps someone else clicked the link, or perhaps
y
