Re: Netowrk Admin. Breach

On Jun 7, 7:35 pm, "Al Dunbar" <AlanD...@xxxxxxxxxxxxxxxxxxx> wrote:
<chadpendergr...@xxxxxxxxx> wrote in message

news:be936c45-66b6-4b38-b89e-1aee77577616@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Jun 7, 2:07 am, "Anthony [MVP]" <anth...@xxxxxxxxxxxx> wrote:

I don't really want to discuss how to do it, but it is easily done,
Anthony,http://www.airdesk.co.uk

<chadpendergr...@xxxxxxxxx> wrote in message

news:0460e10d-9d38-4c89-be1a-3305ce7f2fc5@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Jun 6, 1:49 pm, "Anthony [MVP]" <anth...@xxxxxxxxxxxx> wrote:

<snip>

How can I understand the seriousness of the situation if I don't know
what can be done? No offense, but in order to keep a system secure you
need to know areas where it can be exploited, and how.

=========

I understand what you are saying (and why), but I disagree.

If one's ability to keep systems secure is dependent on knowing how to
leverage all of the various possible exploits, then one is limited in what
one can protect against.

Quite a few of the MS security patches deal with fixing buffer overflow
vulnerabilities through which a hacker "could gain complete control over
your system". I do not need to be able to do this myself, or even know
specifically how someone else might do it in order to protect our systems
against such attacks - all I need to do is apply the security patch.

Similarly in this case it should be enough to know that giving any sort of
privileged access to any part of your infrastructure by failing to reset
passwords known to a departed admin could potentially open up more than just
that one part of the infrastructure.

You have already taken this precaution, so, even without knowing how this
could be used against your company, you have shown due diligence.

/Al

You have a valid point, but it's the difference between using a TV and
wanting to know how it works. I'm not content with just knowing that
such and such a patch will protect against a certain kind of attack. I
want to know the type of attack, how to protect against it, and how
the attack is performed. I want to know the nuts and bolts of it.
.

Relevant Pages

  • Re: Netowrk Admin. Breach
    ... one can protect against. ... privileged access to any part of your infrastructure by failing to reset ... You have already taken this precaution, so, even without knowing how this ... such and such a patch will protect against a certain kind of attack. ...
    (microsoft.public.windows.server.security)
  • Re: Netowrk Admin. Breach
    ... but in order to keep a system secure you ... one can protect against. ... privileged access to any part of your infrastructure by failing to reset ... You have already taken this precaution, so, even without knowing how this ...
    (microsoft.public.windows.server.security)
  • Re: Firewall security: Re: Problems with simple Samba file share
    ... >>million doesn't change my action of deploying a firewall ONCE. ... They keys can be obtained ... > What I suspect is that you think a special attack will be developed ... the firewall helps protect us. ...
    (comp.os.linux.misc)
  • Re: Protection from Hackers
    ... protect your hard drive from an intruder that had physical access to your ... protect the accounts in the domain from this sort of attack [though the ... Linux / Unix / BSD are also vulnerable to this sort of attack. ...
    (microsoft.public.win2000.security)
  • Re: Liberal *peaceniks* refuse to see the coming storm
    ... in their power to destroy the effectiveness of America. ... With Bush in power, it's a safe bet that whatever ... protect the American people. ... 1993 attack, what did he do? ...
    (alt.politics.bush)
Quantcast