On Sat, 17 May 1997, Bernd Eckenfels wrote:
> > NT bugs are denial-of-service type.
>
> Since Deny of Service Attacks are usually weakness in the protocol, this is
> not realy an issue here.
My point is not that. It should read NT bugs which were encountered
until now are *generally* denial of service type. This is really what I
thought for after reading complaints abut attacks on NT. But the bugs I
mentioned were not weaknesses of this type since counterparts
(especially bind) of programs came from different sources worked quite
fine but the problem was with the one come originally in NT 4.0 pack was
buggy. Which was fixed in service pack 2 or 3. What changed? Protocols
no only the buggy code.
>
> > And there was one (I don't know if it
> > was fixed) if someone enabled Netbeui over TCP/IP one could easily map
> > drives of NT from a distant point...
>
> If I enable NFS on a Unix Box one can do it, too. And with NFS I have much
> less authentication, and no User Interface to see which Dirs are exported.
>
> > And since system registry could even be read with Guest account
> > (which is predefined in NT) there is another problem.
>
> You can read /etc/passwd on a Unix System whith each predefined Gast
> Account, too.
Although the point is not that nowadays shadow passwords are quite
popular. But this registry problem requires quite a lot change in NT
kernel. And it seems that there won't be any recent change for it. So
people running NT machines should be quite careful about this. For
example it is a good idea to disable guest accounts at first hand.
>
> > But it involws
> > tha it is possible to hach administrator account since it is also default.
>
> root is default on Unix, too.
Yep, but one can easily rename or completely delete this account or
disable it choosing making su instead of directly log in. But in NT
root is not only privilged as an account but kernel giwes administrator
default rights. In unix it is only a matter of privilege. This is also
what I read
>
> > There was other denial of service bugs in RAS and DNS but as far as I know
> > fixed with service pack.
>
> I know a lot of Deny of Service Atacks for bind or pppd.
>
> There are relay not much difference between Unix and NT. There are some
> additional Protocols which ppl feel unsafe cause thy dont know them. This is
> true for RPC on Unix too. I would never run portmap on a bastion host, cause
> I dont know the weakness of those Protocolls.
>
Regards
Kerem ERSOY
> Greetings
> Bernd
> --
> (OO) -- Bernd_Eckenfels @
Wittumstrasse13 .
76646Bruchsal .
de --
> ( .. ) ecki @
{inka .
de,linux.de,debian.org} http://home.pages.de/~eckes/
> o--o *plush* 2048/93600EFD eckes @
irc +4972573817 BE5-RIPE
> (O____O) If privacy is outlawed only Outlaws have privacy
>
Follow-Ups:
-
Re: Firewall
From: Bernd Eckenfels <lists @
lina .
inka .
de>
References:
-
Re: Firewall
From: Bernd Eckenfels <lists @
lina .
inka .
de>
|
|
