Vulnerability Development mailing list archives
RE: How to hide a file ?
From: H C <keydet89 () yahoo com>
Date: Thu, 10 Jan 2002 06:53:48 -0800 (PST)
If I remember correctly from the earlier thread on this same topic you stated that this is only possible on NTFS and that if you were to move the ADS file to FAT that you would lose the files attached or something to that effect.
Yes. If the file created on NTFS w/ ADSs touches a non-NTFS file system, the ADSs are not carried over.
The question I had was this. Would it be possible to take a file (test.txt) and bind multiple tools in ADS and the transfer the file via ftp on to another box, also is using NTFS, would the programs still accessible via the start command. I tested this with a Win2K box and NT4.0 and was unsuccessful. So were the results accurate?
I have no idea. Other than in very general terms, you haven't stated what your testing methodology was. Did you first confirm that the ADSs were bound to the file before the FTP transfer? If so, how? What tool did you use? Did you do a packet capture on the network to observe the transfer? What tool did you use (other than 'start') to see if the ADSs remained after the transfer? Also, what command line did you use w/ 'start'? We've seen in this thread alone where a full path is required on Win2K systems, even if the file and ADS are in the current directory. In order to provide in put on your testing, the methodology needs to be known fully, so that it can be reproduced. I'm not trying to sound elitist or superior, simply trying to get information.
Is there no way to hide programs using ADS and transfer the file by normal means and still have them exist?
What is 'normal' means? 'Normal' on a Windows network means file sharing, and it's been shown that this works. __________________________________________________ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/
Current thread:
- RE: How to hide a file ?, (continued)
- RE: How to hide a file ? Farahbakhshian, Mike (OD) (Jan 08)
- RE: How to hide a file ? Incs, Harry (Jan 08)
- Re: How to hide a file ? bugtraq (Jan 08)
- RE: How to hide a file ? Pete Simpson (Jan 09)
- RE: How to hide a file ? Ed Moyle (Jan 09)
- RE: How to hide a file ? Farahbakhshian, Mike (OD) (Jan 09)
- RE: How to hide a file ? Matthew LaGrange (Jan 09)
- RE: How to hide a file ? Young, Brandon (Jan 09)
- Re: How to hide a file ? Blue Boar (Jan 09)
- RE: How to hide a file ? Bojan Zdrnja (Jan 10)
- RE: How to hide a file ? H C (Jan 10)
- Re: How to hide a file ? Blue Boar (Jan 09)
- RE: How to hide a file ? Vincent Tiu (AV-PH) (Jan 09)
- RE: How to hide a file ? Farahbakhshian, Mike (OD) (Jan 10)
- How to hide a file ? Kurt Seifried (Jan 10)
- How to hide a file ? Kurt Seifried (Jan 10)