[Dshield] Re: DCOM Question

Brenden Walker BKWalker at DRBSystems.com
Tue Aug 5 12:18:01 GMT 2003


But have you renamed the Administrator account??  Always a good idea, as
that's the first account to attack on a Windoze machine...



> -----Original Message-----
> From: Keith Bergen [mailto:keith at keithbergen.com] 
> Sent: Monday, August 04, 2003 4:31 PM
> To: General DShield Discussion List
> Subject: Re: [Dshield] Re: DCOM Question
> 
> 
> Actually, Remote Desktop isn't too bad in my configuration.
> 
> 1. I don't use the default port of 3389.
> 2. There are currently no known security holes for RD.
> 3. My linksys router does not permit port scans. It will shut 
> down the IP if it detects one.
> 4. If all that fails, you still have to know a valid account 
> name and a valid password.
> 
> Oh, and obviously, I turn off the guest account.
> 
> Keith.
> 
> ---- Original message ----
> >Date: 04 Aug 2003 16:23:11 -0400
> >From: David Hart <hart401 at tqmcube.com>
> >Subject: Re: [Dshield] Re: DCOM Question  
> >To: General DShield Discussion List <list at dshield.org>
> >
> >On Mon, 2003-08-04 at 16:12, Keith Bergen wrote:
> >> I use a linksys router/switch at home. I simply enable the
> >> limited number of ports that I need available (WEB, Remote 
> >> Desktop). That router provides a limited table where you 
> can 
> >> forward the ports you want. I presume then that all others
> >> are not open and don't go anywhere since I haven't 
> explicitly 
> >> told the router what to do with them.
> >> 
> >Call me paranoid but in a million years I would not use
> remote desktop.
> >
> >_______________________________________________
> >list mailing list
> >list at dshield.org
> >To change your subscription options (or unsubscribe), see:
> http://www.dshield.org/mailman/listinfo/list
> 
> _______________________________________________
> list mailing list
> list at dshield.org
> To change your subscription options (or unsubscribe), see: 
> http://www.dshield.org/mailman/listinfo/list
> 




More information about the list mailing list