December 28th, 2004 02:52 PM
Provided you've disabled remote management on the DSL/Cable router, and you're routinely updating your SyGate firewall & discontinue use of IE (as was just mentioned), I'd see no reason to replace...
December 10th, 2004 08:43 PM
Ensure that authentication is disabled (via NWAdmin32). In addition, are you doing any type of NAT via the BorderManager solution? If not, you may need to implement your NAT rule to convert your...
December 2nd, 2004 11:41 PM
Having been through and performed several audits, your recommendation should be something like:
ICMP and ICMP echo will be disabled via the implementation of xxx filtering using xxx technology. We...
November 25th, 2004 05:57 PM
Looks like the site is in Korea. I've sent an email to the site owner indicating they have 3 days to resolve before authorities are contacted..
We'll see what happens.
November 25th, 2004 05:53 PM
Got this email today.. What a joke. If I wasn't in InfoSec, I'd be tempted to take their site down via nefarious means:
---
Dear valued customer Need Help?
November 22nd, 2004 05:52 PM
An alternative to logging into AD without installing Windows is to use VMWare and create a Windows VMSession with the appopriate config to authenticate to AD.
At work, they use eDirectory...
November 21st, 2004 09:01 PM
I personally prefer PGP 8.1. I used the commercial version (paid for it). THe most useful component has to be the PGPDisk.. I've created a 6gb PGP Disk using a 4096 bit keylength.
November 19th, 2004 11:42 PM
Tiger..
To respond to the FTP questions:
Yes, the FTP account(s) can be defined with rights to any portion of the filesystem (mount points).
As to the level of access, there is no "admin"...
November 19th, 2004 10:23 PM
Both of you are still missing a basic point in the security of this server..
Just by brute-forcing an FTP password does not provide 'root' equivalency. What was the transition from FTP to...
November 19th, 2004 01:08 PM
As an InfoSec consultant, I would tend to agree that containing the incident now is probably the most prudent approach.
However, with that being said - this individual obviously could use some...
November 18th, 2004 06:06 PM
I'm just curious how this person gained "root" level access via your FTP site. Was some form of buffer-overflow exploited in addition to the FTP account brute-forcing? Also.. I assume you HAD to have...
November 18th, 2004 04:12 PM
You're not alone being half geek / half redneck.
While I'm certainly no redneck, I am an uber-geek, punctuated by massive
weight lifting, duck/goose hunting and a huge amount of offroading (both...
November 18th, 2004 04:08 PM
Just joined.. Living in grey/chilly Salt Lake City, Utah.
InfoSec Consultant (for the moment) with Military background.
