[Full-Disclosure] Re: [OFF TOPIC] winxp home expusure

From: himba (himba_at_siol.net)
Date: 03/23/04

  • Next message: Dkr. Armand Geddyn: "Re: [Full-Disclosure] ISS 'Witty' Worm Analyzed" 
    To: full-disclosure@lists.netsys.com
Date: Tue, 23 Mar 2004 15:05:42 +0100

    Richard Maudsley wrote:
    > The VNC server runs as a system service. It is able to function when there
    > are no users logged on.
    >
    > What do you mean 'how bad'?

    bad in security perspective - there are alot of 'rummors' and online
    articles about winXP home edition being the worst case for use in
    local area networks (company lan, not home lan). We are still running
    win98 on most of the desktops but notebooks we obtained recently have
    winxp home edition installed by default and didn't bother to use eg.
    win98 or winxp pro. though we will have to start using pro version if
    want to be able to use vpn and file access from outside of the lan.

    >
    > You are suggesting that Windows lies about the state of its network
    > interfaces?
    hmm, yes, so what it actually closes are maybe just -home networking-
    connnections eg. no access to local shares ? So if somebody planted
    malicious program it would run always, no matter if someone is logged
    in or not.

    If the actions performed upon log out would really close all network
    connections to the machine running winxp home I belive this would at
    least be one very good setting implemented by ms :)

    rgrds, himba
    >
    > -rich
    >
    > himba <himba@siol.net> wrote:
    >
    >>Hi,
    >>
    >>How bad is it to have Win XP HOME at work - in LAN ?
    >>I ask for security reasons - I just logged off in winxp home from
    >>vncviewer and it said -closing all network connections ...- and my vnc
    >>connection still remained active :)?
    >>
    >>regards, himba
    >>
    >>_______________________________________________
    >>Full-Disclosure - We believe in it.
    >>Charter: http://lists.netsys.com/full-disclosure-charter.html
    >
    >

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Dkr. Armand Geddyn: "Re: [Full-Disclosure] ISS 'Witty' Worm Analyzed"

    Relevant Pages

    • Re: Loss of Connectivity on Only One PC on a LAN
      ... When you ran the Network Setup Wizard, ... The original setup of the LAN was done entirely by the user of the other PC on that LAN in July. ... I use a LAN connection which consists of two PCs each connected to a Linksys BEFSR 41 Router. ...
      (microsoft.public.windowsxp.network_web)
    • Re: TCPIP - Ping tool
      ... Strangely enough the answer was under your nose all along, namely PING. ... If your "internal network" corresponds to a Local Area Network (LAN), ... assume the subnet address for your LAN is 192.168.10.0 and the subnet mask ...
      (bit.listserv.ibm-main)
    • Re: Firewall and DMZ topology
      ... attacker cannot spread his influence across the network. ... If the DMZ resides between the public Internet and the ... Should the DMZ be behind the LAN and not split off at the firewall, ... > The Gartner Group just put Neoteris in the top of its Magic Quadrant, ...
      (Security-Basics)
    • Re: Installing multiple SBS VPN clients
      ... please check the Local area network routing only. ... reachable from the remote access server. ... Check to ensure the SBS Server is using a static IP address on its LAN ... Microsoft CSS Online Newsgroup Support ...
      (microsoft.public.windows.server.sbs)
    • RE: Hellllllloooooo...is anyone there? WAS: RE: Mysterious problem: cant backtrack an unwise router
      ... > I have a small home network which ran wonderfully for several ... The home LAN is all on static IPs: ... > MS Remote Desktop from my XP workstation to connect to my ... > same router on my home LAN and disabling the RH 7.0 box as ...
      (RedHat)