AW: MS Terminal Services open to the world

["Dominick Baier" <groups () die-lounge com>]

Hi, 

well the idea isn't _that_ bad at all - 

you have 128bit encryption - can make use of strong passwords - if all other
ports are blocked from the world (esp. 135-139, 445)
you have rich auditing - 

well, the approach is not worse than any other remote mgmt solution -
besides SSH.....

there are some pen test tools for ts - but the one we are all waiting for
-tsgrinder- for brute forcing ts is still pending.

check .

www.hammerofgod.com


greets

-----Ursprüngliche Nachricht-----
Von: Ralph Los [mailto:RLos () enteredge com] 
Gesendet: Freitag, 10. Januar 2003 16:09
An: 'Pen-test () securityfocus com'
Betreff: MS Terminal Services open to the world
Vertraulichkeit: Vertraulich


Hello all,

        I've got a pretty good client of mine who absolutely refuses to heed
my warnings about keeping Terminal Services open to the world.  They rely on
Windows passwords and figure that's strong enough for all their servers
(management).  Now I'm given the task of auditing their
security/infrastructure and would like to come up some creative ways to back
up my point about MS TS open to the Internet being a bad idea.

Any thoughts or input is appreciated.

Ralph


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/




----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/