Penetration Testing mailing list archives
Re: Remote Desktop/Term. Serv information leakage
From: Kyle Maxwell <krmaxwell () gmail com>
Date: Fri, 1 Jul 2005 13:14:24 -0500
On 1 Jul 2005 14:41:45 -0000, kuffya () gmail com <kuffya () gmail com> wrote:
Hi list, One of our recent clients has a seperate 'isolated' network where they keep sensitive material. This network is not connected to the internet, is not physically accessible and you can only connect to it using remote desktop. They asked us to test if the isolated network was adequately protected.
This doesn't really sound all that isolated to me. If you can connect to it with RDP, then there's definitely reachability (the packets are getting routed there, after all). It may be *firewalled* but this is substantially different from *isolated*. If the goal is to prevent information leakage, then there's not much you can do if the client is determined to allow remote access. Depending on the type of information being handled, there's going to be tons of ways to 'leak' it out through just about any remote access method. You might make it a little more difficult, but if the threat you're facing is something greater than just casual leakage, any remote access is going to present difficulties.
And do you think this 'bug' is something investigating any further? Is it something you people knew of?
No, it's part of the design - ISTR that there was some sort of add-in to Remote Desktop that would actually let you transfer the files directly, but anyway MS's concept is to use file sharing for that. -- Kyle Maxwell http://caffeinatedsecurity.com [krmaxwell () gmail com]
Current thread:
- Remote Desktop/Term. Serv information leakage kuffya (Jul 01)
- Re: Remote Desktop/Term. Serv information leakage Joachim Schipper (Jul 01)
- Re: Remote Desktop/Term. Serv information leakage Eric Smith (Jul 01)
- Re: Remote Desktop/Term. Serv information leakage Kyle Maxwell (Jul 01)
- Re: Remote Desktop/Term. Serv information leakage Terry Vernon (Jul 01)
- Re: Remote Desktop/Term. Serv information leakage Joachim Schipper (Jul 01)
- RE: Remote Desktop/Term. Serv information leakage Paul Fields (Jul 01)
- Re: Remote Desktop/Term. Serv information leakage Thor (Hammer of God) (Jul 01)
- <Possible follow-ups>
- RE: Remote Desktop/Term. Serv information leakage Andre Protas (Jul 01)
- RE: Remote Desktop/Term. Serv information leakage Ha, Jason (Jul 02)
- Re: Remote Desktop/Term. Serv Information leakage kuffya (Jul 02)
- RE: Remote Desktop/Term. Serv Information leakage Paul Fields (Jul 05)
- RE: Remote Desktop/Term. Serv information leakage Salvador.Manaois (Jul 04)
- Providers blocking portscans - bad news for pentest? Petr . Kazil (Jul 04)
(Thread continues...)