|
Full Disclosure
mailing list archives
RE: [lists] Terminal Server vulnerabilities
From: "ALD, Aditya, Aditya Lalit Deshmukh" <aditya.deshmukh () online gateway expertworks net>
Date: Fri, 28 Jan 2005 01:06:53 +0530
It's also only possible when you've got NetBIOS/CIFS open to
the Internet,
Yes I know... That is why I said security thru obscurity
With this argumentation, you could sell your firewalls.
No I would not I would use an ids with properly tuned sigs for the terminal
server abd then connect the terminal server via a proxy like vnc running
something over freebsd or linux. I would never allow a windows terminal
server to be directly be connected to the net...
-aditya
________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
 By Date 
By Thread
Current thread:
Re: [lists] Terminal Server vulnerabilities Jonathan Rickman (Jan 26)
Re: Terminal Server vulnerabilities Nicolas RUFF (lists) (Jan 27)
|
Intro
