Full Disclosure mailing list archives

Re: [lists] Terminal Server vulnerabilities

From: Jan Muenther <jan.muenther () nruns com>
Date: Thu, 27 Jan 2005 21:11:09 +0100

No I would not I would use an ids with properly tuned sigs for the terminal
server abd then connect the terminal server via a proxy like vnc running
something over freebsd or linux. I would never allow a windows terminal
server to be directly be connected to the net...


Spot the two obvious mistakes in this reply.

I retreat from the discussion, should've held back my first comment. 

j.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Terminal Server vulnerabilities Daniel Sichel (Jan 24)
- RE: [lists] Terminal Server vulnerabilities Curt Purdy (Jan 25)
  - Re: [lists] Terminal Server vulnerabilities Steve Tornio (Jan 25)
    - RE: [lists] Terminal Server vulnerabilities ALD, Aditya, Aditya Lalit Deshmukh (Jan 27)
    - Re: [lists] Terminal Server vulnerabilities Jan Muenther (Jan 27)
    - RE: [lists] Terminal Server vulnerabilities ALD, Aditya, Aditya Lalit Deshmukh (Jan 27)
    - Re: [lists] Terminal Server vulnerabilities Jan Muenther (Jan 27)
  - Re: [lists] Terminal Server vulnerabilities Jonathan Rickman (Jan 26)
- Re: Terminal Server vulnerabilities Nicolas RUFF (lists) (Jan 27)
  - Re: Terminal Server vulnerabilities Valdis . Kletnieks (Jan 27)
- <Possible follow-ups>
- Re: Terminal Server vulnerabilities Daniel H. Renner (Jan 24)
  - RE: Re: Terminal Server vulnerabilities Larry Seltzer (Jan 25)
  - Re: Terminal Server vulnerabilities offtopic (Jan 25)
- RE: Re: Terminal Server vulnerabilities Mark Senior (Jan 25)
  - RE: Re: Terminal Server vulnerabilities Larry Seltzer (Jan 25)
    - Re: Re: Terminal Server vulnerabilities Valdis . Kletnieks (Jan 25)
- Re: Terminal Server vulnerabilities larry_seltzer_is_a_fraud (Jan 26)

(Thread continues...)