[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [lists] [Full-Disclosure] Terminal Server vulnerabilities

To: "'Jan Muenther'" <jan.muenther@xxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [lists] [Full-Disclosure] Terminal Server vulnerabilities
From: "ALD, Aditya, Aditya Lalit Deshmukh" <aditya.deshmukh@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 28 Jan 2005 01:06:53 +0530

>It's also only possible when you've got NetBIOS/CIFS open to 
>the Internet, 

Yes I know... That is why I said security thru obscurity 

> With this argumentation, you could sell your firewalls.

No I would not I would use an ids with properly tuned sigs for the terminal
server abd then connect the terminal server via a proxy like vnc running
something over freebsd or linux. I would never allow a windows terminal
server to be directly be connected to the net... 


-aditya


________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities
  - From: Jan Muenther

References:
- Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities
  - From: Jan Muenther

Prev by Date: Re: [Full-Disclosure] "Advances in Security" in the Linux Kernel and RedHat idiocy
Next by Date: [Full-Disclosure] xinetd issue..
Previous by thread: Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities
Next by thread: Re: [lists] [Full-Disclosure] Terminal Server vulnerabilities
Index(es):
- Date
- Thread