December 28th, 2004, 03:52 PM
Provided you've disabled remote management on the DSL/Cable router, and you're routinely updating your SyGate firewall & discontinue use of IE (as was just mentioned), I'd see no reason to replace...
December 10th, 2004, 09:43 PM
Ensure that authentication is disabled (via NWAdmin32). In addition, are you doing any type of NAT via the BorderManager solution? If not, you may need to implement your NAT rule to convert your...
December 3rd, 2004, 12:41 AM
Having been through and performed several audits, your recommendation should be something like:
ICMP and ICMP echo will be disabled via the implementation of xxx filtering using xxx technology. We...
November 25th, 2004, 06:57 PM
Looks like the site is in Korea. I've sent an email to the site owner indicating they have 3 days to resolve before authorities are contacted..
We'll see what happens.
November 25th, 2004, 06:53 PM
Got this email today.. What a joke. If I wasn't in InfoSec, I'd be tempted to take their site down via nefarious means:
---
Dear valued customer Need Help?
November 22nd, 2004, 06:52 PM
An alternative to logging into AD without installing Windows is to use VMWare and create a Windows VMSession with the appopriate config to authenticate to AD.
At work, they use eDirectory...
November 21st, 2004, 10:01 PM
I personally prefer PGP 8.1. I used the commercial version (paid for it). THe most useful component has to be the PGPDisk.. I've created a 6gb PGP Disk using a 4096 bit keylength.
November 20th, 2004, 12:42 AM
Tiger..
To respond to the FTP questions:
Yes, the FTP account(s) can be defined with rights to any portion of the filesystem (mount points).
As to the level of access, there is no "admin"...
November 19th, 2004, 11:23 PM
Both of you are still missing a basic point in the security of this server..
Just by brute-forcing an FTP password does not provide 'root' equivalency. What was the transition from FTP to...
November 19th, 2004, 02:08 PM
As an InfoSec consultant, I would tend to agree that containing the incident now is probably the most prudent approach.
However, with that being said - this individual obviously could use some...
November 18th, 2004, 07:06 PM
I'm just curious how this person gained "root" level access via your FTP site. Was some form of buffer-overflow exploited in addition to the FTP account brute-forcing? Also.. I assume you HAD to have...
November 18th, 2004, 05:12 PM
You're not alone being half geek / half redneck.
While I'm certainly no redneck, I am an uber-geek, punctuated by massive
weight lifting, duck/goose hunting and a huge amount of offroading (both...
November 18th, 2004, 05:08 PM
Just joined.. Living in grey/chilly Salt Lake City, Utah.
InfoSec Consultant (for the moment) with Military background.
