Firewalls: Re: Cracking NT via RAS

Firewalls
(April 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Cracking NT via RAS
From:	Martin Hepworth <martin @ dynasuk . co . uk>
Date:	Fri, 12 Apr 1996 09:24:46 +0100 (BST)
To:	"Norton, Dave" <dnorton @ trane . com>
Cc:	Firewalls-post <firewalls @ GreatCircle . COM>
In-reply-to:	<199604111905 . AA13124 @ nacg . trane . com>

On Thu, 11 Apr 1996, Norton, Dave wrote:

> 
> Hi gang,
> We have a sister organization with a VPDN interconnected with
> our own with only router ACL's between 'em, filtering on "trusted"
> and "semi-trusted" IP address ranges only. Our org has limited
> security consciousness, theirs has none... They insist on putting
> Digi-boards directly on NT apppl servers, and allow remote direct
> dial access into same [...cringe :-(  ].
> 
> I imagine that war dialers and password guessing programs will
> work just as well on NT/RAS as UNIX - why not - so, if an interloper
> can gain a session on a "trusted" NT host, he/she ought to be able
> to freely island-hop over to our IP VPDN with impunity, right?
> 
> Second, without being too explicit, can someone out there tell
> me of their real tried and tested assessment as to the "swiss
> cheese" factor concerning security of the NT OS. Some of our
> "NT rocket scientists" around here persist in claiming that UNIX is
> not a secure environment, whereas NT is. I have to continually
> tell them that UNIX is much more secure(able) because we know
> where the holes in the cheese are... That we don't hear about
> NT security problems much because there hasn't been enough
> elapsed time since its birth to thoroughly probe and exploit it...

check out the ntsecurity dudes on their mailing list...

ntsecurity-request @
 iss .
 net

with "subscribe ntsecurity" in the message body
> 
> Any comments, feedback from outside my organization will be greatly
> appreciated, because I blew all my intellectual credibility in-house
> when I accepted employment here... Sorry, but I can't tell you who
> we are, cause of what I've devulged to the world in this posting...
> 

So did you mail from you emloyers 'trane.com' ;-)

*****************************************************************
* Martin Hepworth		* Tel No. +44 (0)1865 316333    *
* Dynasoft Ltd			* GSM     +44 (0)468 461684	*
* 8 South Parade 		* Fax     +44 (0)1865 316444    *
* Summertown			* Support +44 (0)1865 316070    *
* Oxford 			* E-mail: martin @
 dynasuk .
 co .
 uk	*
* OX2 7JL, UK			* WWW	: http://www.dynas.se	*
*****************************************************************
1st rule of computer security - 
WYDSIWGY: What You Don't See Is What Gets You

References:

Cracking NT via RAS
From: "Norton, Dave" <dnorton @ trane . com>

Indexed By Date	Previous:	Re: internet connection From: sameer @ wiproge . med . ge . com
Indexed By Date	Next:	Re: UUCP vs. Anonymous FTP From: sameer @ wiproge . med . ge . com
Indexed By Thread	Previous:	Cracking NT via RAS From: "Norton, Dave" <dnorton @ trane . com>
Indexed By Thread	Next:	Re: Cracking NT via RAS From: Arley Carter <ac @ hawk . twinds . com>