Several people sent me mail asking for specifics of security weaknesses
on Windows NT. I have found very similar weaknesses on Lotus Notes
servers. We are are talking about some big companies here with some
big tough lawyers who used to be football players, and I am only a
skinny little dawg with no legal experience, so pardon my prudence in
not being specific about holes.
Run CrackerJack as a DOS program under Windoze and look for weak
passwords. Despite all the hype about various products, I still
routinely crack 20 percent of passwords on systems I go after.
Mind you, I use a 20 megabyte password dictionary with 24 different
languages. But even the Morris Worm's dictionary will get you a couple
of accounts on most systems.
Look for large amounts of shared user disk space, such as those used by
cc:Mail or word processors or spreadsheets, which are writable/readable
by anybody and which most security programs don't check. These are
great places for hiding your Windows hacking applications. If you do
it right, you can set up your cracking .DLL to kick off when the user
starts their "legitimate" application.
Look for file systems which can be remotely mounted across the network.
Now ask yourself if you would trust such a box as a firewall.
Here are a few companies that can help make these boxes secure.
Internet Security Scanner finds holes, cklaus @
Somar Sofware has some heavy duty security enhancers, info @
CyberSAFE Co. also has heavy duty security enhancers,
Global Internet, formerly Blue Ridge Software has a TNT security system
for Windows NT. Adds firewall type features even though it is not a true
firewall. They are also doing some neat NT firewall stuff, don't
remember the specifics. Contact maruppel @
(Is it the booze or the acid that is messing up my mind?
As Red Boots said, it could be another tragic example of
alcohol and keyboards not mixing).
Finally, a word to those undoubtedly wiser than I, about cc:Mail.
cc:Mail salesdroids have been saying for some time that cc:Mail over
X.25 is encrypted and they even sent mail to some companies saying the
cc:Mail router could be regarded as a firewall.
Well, I put my shiny new X.25 sniffer on an Ericsson X.25 line between
two cc:Mail routers running Router 5.12 and the mail manager was SURE
that the mail was encrypted. Guess what showed up? Straight ASCII.
I got the directory synchronization between a US site and a European
site and oodles of mail about financial issues. The small print in
cc:Mail router documentation says you have to be running Router
5.13 at both ends for encryption to work.
Sicque Puppi, le Chat_Eating_Dawg
(( There is no connection, real or imagined, between the original ))
(( skinny retarded Sick Puppy and the You Sick Puppy web site. ))
My apologies to Brent for wandering about on his list. But the Italian
type cookies he provides at his seminars are really great.