[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Windows covert channel

To: 8tImER <8tImER@gmx.net>, full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Windows covert channel
From: Jeremiah Cornelius <jeremiah@nur.net>
Date: Sun, 19 Oct 2003 18:46:23 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Sunday 19 October 2003 16:48, 8tImER wrote:
> Hello James,
>
> my guess is you are talking about 'streams' in NTFS.
> Example:
> Create a text file, save it.
> Then use 'echo "hidden text" >> file.txt:1' to add the hidden stuff.
> I don't remember how to read that stuff out afterwards though.

Interesting point for clarification...

How does ADS in NTFS differ from arbitrary metadata types added to Reiserfs - 
for instance?

It would be interesting to see if this is subject to a similar potential for 
abuse.  I admit that I am only passingly familiar with the topic - but I have 
never seen this discussed before either.

Is anybody cluefull _and_ objective about this?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQE/kz53Ji2cv3XsiSARAlWoAJ9kmxqh8QuzNo9gpLgBsKxJ6ZTp5QCdEhjW
Y+FsN7FjbytTiBru2YiINhc=
=INEG
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Windows covert channel
  - From: James Kelly <macubergeek@comcast.net>
- Re: [Full-Disclosure] Windows covert channel
  - From: 8tImER <8tImER@gmx.net>

Prev by Date: Re: [Full-Disclosure] Windows covert channel
Next by Date: Re: [Full-Disclosure] AT&T early warning system
Previous by thread: Re: [Full-Disclosure] Windows covert channel
Next by thread: RE: [Full-Disclosure] Windows covert channel
Index(es):
- Date
- Thread