If you do not have a firewall or access-filters on your router, this
would be a fairly trivial task.
>From inside the network, stealing passwords is as simple as using a
packet sniffer. From outside the network, attacking systems or
attaching to shared resources is a not too difficult either.
Please check out http://www.axent.com/swat/swat.htm for more details on
the possible attacks.
darin
----
#include <cya/company/disclaim.h>
"In order to succeed, one must pay attention"
-----Original Message-----
From: Giuseppe Caparrotti [mailto:caparrotti @
newentry .
com]
Sent: Wednesday, March 11, 1998 1:56 PM
To: firewalls @
greatcircle .
com
Subject: reject attacks
Hi, We've set up a lan with some Win 95 computer based systems, and we
have
also a netscape web server and no firewall system.
We have shared some resources through our internal net.
So I've set up a password for each of them.
I would like to know if it should be possible from inside this network,
to
steal a password, or to enter through a back door into a protected
resource.
And, how it should be possible to do this (that is , which type of
operation should be performed to break into a protected resource), and
also how to avoid it.
Thanks in advance.
Ing. Giuseppe Caparrotti
|
|
