[PEN-TEST] routes (was RE: Modem detection without dialing

["Meritt, Jim" <Jim.Meritt () GETRONICSGOV COM>]

Idea I've tried:  Investigate routing tables - if a route exists from inside
<-> outside that does NOT go through an identified system (firewall, most
likely) there is (or was) a IP route through there.  If was, recently since
the route hasn't dropped yet.

Just an idea.  Comments on it?

V/R

Jim

_______________________
The opinions expressed above are my own.  The facts simply are and belong to
none.
James W. Meritt, CISSP, CISA
Senior Information Systems Security and Audit Analyst, Information Assurance
Center of Excellence
Getronics Government Solutions



-----Original Message-----
From: Blair, Glenn [mailto:glenn.blair () SCOTIABANK COM]
Sent: Monday, November 20, 2000 2:16 PM
To: PEN-TEST () SECURITYFOCUS COM
Subject: Modem detection without dialing


I am wondered if there is a product which can detect the existence of a
modem,
without
the need for the modem to be connected ?.  Specifically, in a LAN
environment,
can an
administrator/pen tester identify a modem through the network, rather than
through the telephone
network.

Any thoughts would be appreciated.



Glenn Blair

Sr. Security Specialist
888 Birchmount Rd 6th Floor
tel. (416) 285-2498
fax (416) 288-5055
glenn.blair () scotiabank com