Re: [PEN-TEST] RAS PT

["Schwienteck, Matthew" <matthew.schwienteck () US PWCGLOBAL COM>]

You can tighten up many registry settings to ensure
1) You are legally protected
2) Your repair directory is protected, hence protecting SAM
3) Many other "hardening" practices can be incorporated
4) Ensure all unnecessary services are disabled
5) etc

Cheers




"Batten, Gerald" <GBatten () EXOCOM COM> on 10/04/2000 01:14:23 PM

Please respond to Penetration Testers <PEN-TEST () SECURITYFOCUS COM>
To:   PEN-TEST () SECURITYFOCUS COM
cc:
Subject:  [PEN-TEST] RAS PT



I unfortunately have very little experience in doing any sort of PT on a RAS
box... let's assume it's an NT box.  Other than enforcing strong passwords
or maybe strong authentication via certificates or SecurID-type cards, what
else can I do to A) protect it, and B) run some sort of PT against it?

Gerald.

*Note: Views expressed in this e-mail are not necessarily those of my
employer.
**Note:  Views expressed in this e-mail are not necessarily mine either.



----------------------------------------------------------------
The information transmitted is intended only for the person or entity to which
it is addressed and may contain confidential and/or privileged material.  Any
review, retransmission, dissemination or other use of, or taking of any action
in reliance upon, this information by persons or entities other than the
intended recipient is prohibited.   If you received this in error, please
contact the sender and delete the material from any computer.