Penetration Testing mailing list archives
Re: [PEN-TEST] X25, all but forgotten?
From: "Masse, Robert" <rmasse () RICHTER CA>
Date: Tue, 29 Aug 2000 13:39:27 -0400
Hi Alfred X25 is a gold mine as far as penetration is concerned. So many people have overlooked this point of entry... I started (back in the day) with X25 long before the internet and this point of entry was always inadequately protected. I bet if I showed up at SANS in Monterey and gave a talk about X25, over 50% of the audience would consider this 'groundbreaking news'. Many companies still have 'forgotten' X25 links lying around through older VAX/Unix/Primos/Gandalf/Develnet systems that are accidents waiting to happen. A lot of those companies are large ones at that with million dollar security budgets that are spent on firewalls and the like... As for a X25 scanner, I had written one 10 years ago in C that would scan DATAPAC (Canadian X25 network that was/(still is?) run by Nortel). I can't seem to locate it but if I find it I will send you a copy. It had a NUA finder and a NUI brute forcer. Regards, Robert -----Original Message----- From: Alfred Huger [mailto:ah () SECURITYFOCUS COM] Sent: Tuesday, August 29, 2000 12:59 PM To: PEN-TEST () SECURITYFOCUS COM Subject: [PEN-TEST] X25, all but forgotten? Hey folks, I was sitting around with some friends over my holidays and we were discussing X25 auditing. For example, does anyone do it anylonger? I know that a great many companies still maintain connectivity to X25 networks like Transpac,Datex,Datapac,Tymnet etc. Seems to me it would be an important part of any network audit given that many X25 backends live in dusty corners and are rarely secured with serious diligence. Having said this, I thought I would pose some questions: 1. Is anyone doing this anymore (legally)? If so what X25 networks are you seeing folks still connected to? 2. Are there any automated tools for this? I remember SALT scripts (and the like) for Minicom and Telix (anyone remember Telix?) as well as some dcl and sh programs for this, however I have not seen them for years (literally). 3. Anyone in commercial scanner land thinking on adding this? It's an idea we mulled at Secure Networks but discarded it for a number of technical reasons and an obvious marketing concern - we had no idea if there was a market for it. Alfred Huger VP of Engineering SecurityFocus.com
Current thread:
- [PEN-TEST] X25, all but forgotten? Alfred Huger (Aug 29)
- Re: [PEN-TEST] X25, all but forgotten? edison (Aug 29)
- Re: [PEN-TEST] X25, all but forgotten? Vanja Hrustic (Aug 29)
- <Possible follow-ups>
- Re: [PEN-TEST] X25, all but forgotten? Masse, Robert (Aug 29)
- Re: [PEN-TEST] X25, all but forgotten? Alfred Huger (Aug 29)
- Re: [PEN-TEST] X25, all but forgotten? Frasnelli, Dan (Aug 29)
- Re: [PEN-TEST] X25, all but forgotten? Emmanuel Gadaix (Aug 30)
- Re: [PEN-TEST] X25, all but forgotten? Peter Van Epp (Aug 30)
- Re: [PEN-TEST] X25, all but forgotten? Alfred Huger (Aug 29)