Security Basics mailing list archives
RE: Citrix Traffic
From: "Murda Mcloud" <murdamcloud () bigpond com>
Date: Wed, 13 Jun 2007 10:36:42 +1000
Why not sniff a session and see what you can find? Just use wireshark and a hexeditor at first... -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of lewise () isotrak com Sent: Wednesday, June 13, 2007 6:47 AM To: security-basics () securityfocus com Subject: Citrix Traffic Hi all, Is anyone able to advise me in the potential security issues around un-encrypted ICA Traffic (TCP:1494/2598)... If this traffic could be sniffed, what information could be gathered from this data? (if any). Username? Plain text password? Keystrokes in plain text? Please, anything you feel could be of value let me know. Names of any tools or papers on this topic e.t.c Thanks.
Current thread:
- Citrix Traffic lewise (Jun 12)
- RE: Citrix Traffic Murda Mcloud (Jun 13)
- <Possible follow-ups>
- Re: Citrix Traffic blocked (Jun 13)
- RE: Citrix Traffic Murda Mcloud (Jun 14)
- RE: Citrix Traffic Lariviere, Stephen G (Jun 14)
- RE: Citrix Traffic Murda Mcloud (Jun 14)
- RE: Citrix Traffic Murda Mcloud (Jun 14)
- Re: RE: Citrix Traffic lewise (Jun 19)
- RE: RE: Citrix Traffic Lariviere, Stephen G (Jun 19)