Re: Testing two bank laptops. winxp vpn client

Disable via reg hack:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters
(dword) DisableSavePassword=1

t

-----
"I don't want their respect, I want their obedience."
Dr. Thomas W. Shinder, M.D.



----- Original Message ----- From: "Bob WIlliams" <sopiaz57@xxxxxxxxx>
To: <pen-test@xxxxxxxxxxxxxxxxx>
Sent: Sunday, February 12, 2006 9:33 AM
Subject: Testing two bank laptops. winxp vpn client


Hey All,

I have a client who wants two bank laptops tested. I want to do some
reasearch on a fix for a problem I know they are vulnerable too. They
use the WIN xp VPN client which saves the password, giving someone who
steals the laptop an easy way into the corporate network.

Does anyone know how I can disable this feature so employees cant save
the password?

Thanks in advance//

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------




------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Relevant Pages

  • RE: Experiences with company nCircle and their IP360 product
    ... since I installed it for myself I have helped to install it at ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, forms, ...
    (Pen-Test)
  • Re: 3rd party vuln assesment firms
    ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Cross site scripting and other web attacks before hackers do! ...
    (Pen-Test)
  • RE: Pre-Scanning for Marketing
    ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Hackers are concentrating their efforts on attacking applications on your ... Up to 75% of cyber attacks are launched on shopping carts, forms, ...
    (Pen-Test)
  • Re: Qualys
    ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Hackers are concentrating their efforts on attacking applications on ... Up to 75% of cyber attacks are launched on shopping carts, ...
    (Pen-Test)
  • Re: Spis products worth a try? Or any suggestions for developers tool?
    ... your site utilizes Javascript heavily, SPI will have a tougher time ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on ...
    (Pen-Test)
Loading