|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
More Rconsole stuff
Chris Brenton (cbrenton
sover.net)Fri, 9 Oct 1998 11:06:39 -0400
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Alexis POLOZOV: "DU 4.0D cdfs bug : xcd eject CDROM, even mounted."
- Previous message: Michael Blythe: "Referer (was Patches for wwwboard.pl)"
- Next in thread: Dan_ThorsonNOTES.SEAGATE.COM: "Re: More Rconsole stuff"
Since we're on the subject of Rconsole and I did not find this in the archives... As of NetWare 4.x, Novell recommends using the Inetcfg utility for managing networking. If you have "load remote" in the autoexec.ncf, Inetcfg will try to grab it and add it to Inetcfg's scripts. The problem here is that Inetcfg saves the Rconsole password to SYS:ETC in a file named Netinfo.cfg. All users have full read access to this directory so anyone with a valid account can view the Rconsole password. Given Simple Nomad's post, even if you cut and paste in order to ensure that the password is encrypted, it is still extremely vulnerable. The patch would be to call remote from another NCF file which is stored in the SYS:SYSTEM directory. This will at least limit access to only Admins. This will also prevent Inetcfg from trying to grab it. Of course the real fix would be to not use Rconsole. ;) I've also noticed (with 4.1x anyway) that if you enable Telnet access to the server, remote sessions are not logged. Combine this with the above and any user can now whack away at the server console without leaving an audit trail. Any known patches for the above would be most cool, Chris -- ************************************** cbrenton
- Next message: Alexis POLOZOV: "DU 4.0D cdfs bug : xcd eject CDROM, even mounted."
- Previous message: Michael Blythe: "Referer (was Patches for wwwboard.pl)"
- Next in thread: Dan_ThorsonNOTES.SEAGATE.COM: "Re: More Rconsole stuff"