RE: Hacked NT/2K box
From: Pidgorny, Slav (pidgorns@anz.com)Date: 07/25/01
- Previous message: Pidgorny, Slav: "RE: Hacked NT/2K box"
- Maybe in reply to: H Carvey: "Hacked NT/2K box"
- Next in thread: Bronek Kozicki: "Re: Hacked NT/2K box"
- Next in thread: Sam Wilson: "RE: Hacked NT/2K box"
- Reply: Bronek Kozicki: "Re: Hacked NT/2K box"
- Reply: Mark Stringer: "NT/IIS Security basics"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <CDEBAB5BBFE0024AABEAF438FB2A4D07692FC0@exgau100qsm00.oceania.corp.anz.com> From: "Pidgorny, Slav" <pidgorns@anz.com> To: 'Nichola Veitch' <veitchn@hotmail.com>, ryan@eEye.com, keydet89@yahoo.com, lynch00@msn.com, focus-ms@securityfocus.com Subject: RE: Hacked NT/2K box Date: Wed, 25 Jul 2001 19:07:45 +1000
Administrator can install drivers? :)
I don't have an answer but I do have a question: why the customer's running
IIS under admin account, not just user account?
Kindest,
Svyatoslav Pidgorny
> -----Original Message-----
> From: Nichola Veitch [mailto:veitchn@hotmail.com]
> Sent: 25 July 2001 18:16
> To: ryan@eEye.com; Pidgorny, Slav; keydet89@yahoo.com;
> lynch00@msn.com;
> focus-ms@securityfocus.com
> Subject: Re: Hacked NT/2K box
>
>
> A customer of mine is running IIS (not sure yet if 4 or 5).
> the IIS service
> account is using the domain admin account. can anyone tell me the
> implications of changing this account to one with less
> priviledges (should
> it be using the system account???)
>
- Previous message: Pidgorny, Slav: "RE: Hacked NT/2K box"
- Maybe in reply to: H Carvey: "Hacked NT/2K box"
- Next in thread: Bronek Kozicki: "Re: Hacked NT/2K box"
- Next in thread: Sam Wilson: "RE: Hacked NT/2K box"
- Reply: Bronek Kozicki: "Re: Hacked NT/2K box"
- Reply: Mark Stringer: "NT/IIS Security basics"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
