Full Disclosure mailing list archives
Re: HP Tandem NonStop servers
From: "Larry W. Cashdollar" <lwc () vapid ath cx>
Date: Thu, 21 Aug 2003 12:50:31 -0400 (EDT)
On Thu, 21 Aug 2003, KF wrote:
Well if its a unix based OS I would start with a suid / sgid listing... as well as checking the listening services... Shoot me a find / -perm -4000 and a find / -perm -2000 along with a netstat -a and we can go from there. If you are willing to give up a shell I'll beat on the suids myself for a bit. =] -KF
Also see what type of hash function is used to store passwords(md5?,crypt()) as well has any password file shadowing. Check out system directory and file permissions as well. Is there alot of cruft installed? X11 japanise language fonts etc..? what are the default system accounts in /etc/passwd? look for that as well. -- Larry C$ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- virus-binaries Andreas Gietl (Aug 20)
- RE: virus-binaries Anthony Aykut (Aug 20)
- RE: virus-binaries Drew Copley (Aug 20)
- HP Tandem NonStop servers david king (Aug 21)
- Re: HP Tandem NonStop servers KF (Aug 21)
- Re: HP Tandem NonStop servers Tom Knienieder (Aug 21)
- Re: HP Tandem NonStop servers KF (Aug 21)
- Re: HP Tandem NonStop servers Larry W. Cashdollar (Aug 21)
- Re: HP Tandem NonStop servers and other off topic crap Kurt Seifried (Aug 21)
- HP Tandem NonStop servers david king (Aug 21)
- RE: HP Tandem NonStop servers Rick Kingslan (Aug 21)
- Re: HP Tandem NonStop servers yossarian (Aug 22)
- Re: HP Tandem NonStop servers Valdis . Kletnieks (Aug 21)