Security Basics mailing list archives

Re: Instant Messaging hash values

From: David Siles <ctowizkid () gmail com>
Date: Fri, 12 Aug 2005 18:53:10 -0500

Nick,

There is a list that contains many well known programs.  NIST
maintains the National Software Reference Library (NSRL).  We use
copies all the time in LE to match software that has been installed on
a suspects computer againsts known program software and specific
versions.

URL: http://www.nsrl.nist.gov/

You will want to obtain DISK 3 of the RDS distribution that are
publicly available.  The latest versions are always provided to RDS
subscribers first in the LE community.

Regards,

Dave

On 8/4/05, Nick Duda <nduda () vistaprint com> wrote:

I'm looking to create a software restriction policy via GPO to prevent
different instant messenger services (AIM, MSN, Yahoo, Trillian..etc)
from running based on the hash value. Short of gathering all know
binaries for each client is there any way to obtain hash codes from past
versions anywhere....perhaps a website with a repository of hash values
for binaries?

Thanks in advance,

Nick Duda - Systems Administrator

Current thread:

Instant Messaging hash values Nick Duda (Aug 05)
- Re: Instant Messaging hash values Dave Aronson (Aug 08)
- Re: Instant Messaging hash values Netops (Aug 08)
  - Re: Instant Messaging hash values Gaddis, Jeremy L. (Aug 10)
- Re: Instant Messaging hash values David Siles (Aug 15)
- <Possible follow-ups>
- RE: Instant Messaging hash values Nick Duda (Aug 10)
- RE: Instant Messaging hash values Robinson, Sonja (Aug 10)
  - Re: Instant Messaging hash values Ayaz Ahmed Khan (Aug 10)
  - RE: Instant Messaging hash values David Gillett (Aug 10)
    - Re: Instant Messaging hash values NewYork User (Aug 12)
- RE: Instant Messaging hash values Keith Bucher (Aug 12)