|
Full Disclosure
mailing list archives
Re: [lists] Terminal Server vulnerabilities
From: Jonathan Rickman <jrickman () gmail com>
Date: Wed, 26 Jan 2005 11:50:42 -0500
On Tue, 25 Jan 2005 14:38:30 -0600, Curt Purdy <purdy () tecman com> wrote:
The problem with terminal server is not any vulnerablities that can be
exploited, but the fact that administrator can be bruteforced (6 attempts
followed by reconnect) and that it is screaming its existence on port 3889.
If you use it, definitely change the port in the registry.
You can use the local security policy to prevent administrators from
logging in via terminal services and then enable "run as" for
administrative tasks...which should be done anyway. Changing the port
number is another good step though.
--
Jonathan
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
 By Date 
By Thread
Current thread:
- Re: [lists] Terminal Server vulnerabilities, (continued)
Re: [lists] Terminal Server vulnerabilities Jonathan Rickman (Jan 26)
Re: Terminal Server vulnerabilities Nicolas RUFF (lists) (Jan 27)
Re: Terminal Server vulnerabilities Daniel H. Renner (Jan 24)
|
Intro
