Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Internal Servers (noob post)

From: Remo Cornali <remo.cornali () alice it>
Date: Fri, 05 Jun 2009 11:02:20 +0200
R. DuFresne ha scritto:

 something solid on the actualy threat from internal users and admins?
A few years ago, the network of one of Italy's biggest publishers of newspapers and books 
went titsup.
The Code Red worm had infected all internal IIS web servers.
The network was behind an adeguate firewall. How could the worm have penetrated the firewall? 
A simple answer: it did not.
A consultant had brought his laptop with him and had connected it to the net. 
His laptop had been infected with the Code Red worm, and so the firewall had
simply been bypassed.
Since then, policies have been updated, and you cannot connect to the network, if your 
MAC address is not known to the admins.

Ciao!
   Remo

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. 
http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: