Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Full Disclosure: RE: [lists] Terminal Server vulnerabilities

RE: [lists] Terminal Server vulnerabilities

From: ALD, Aditya, Aditya Lalit Deshmukh <aditya.deshmukh_at_online.gateway.expertworks.net>
Date: Fri, 28 Jan 2005 01:06:53 +0530

>It's also only possible when you've got NetBIOS/CIFS open to
>the Internet,

Yes I know... That is why I said security thru obscurity

> With this argumentation, you could sell your firewalls.

No I would not I would use an ids with properly tuned sigs for the terminal
server abd then connect the terminal server via a proxy like vnc running
something over freebsd or linux. I would never allow a windows terminal
server to be directly be connected to the net...

-aditya

________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Jan 27 2005

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]