|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [Plug] Microsoft Striks Again
|
When at work, I can't SSH through the firewall @#$@#$ or maybe its a
proxy server, I dunno... I can telnet just fine. If I telnet (insecure)
to one box and then SSH to another, and read my mail there, is that just
as insecure as telnetting to the initial box? I would guess so... These
stupid "protection" devices suck! Although I guess they're worth it to
the people who put them up.
Daniel W. Ottey
Sophomore Computer Science Student
Drexel University - Philadelphia, PA
http://www.snarfykat.org/
AOL Instant Messenger: Snarf2002 - http://www.aim.aol.com/
ICQ: 5723666 - http://www.mirabilis.com/
IRC: ThundrKat - http://www.undernet.org/
On Tue, 31 Aug 1999, Aaron Brown wrote:
> That is why I ssh to my server and read the mail in pine. I dont think
> there is any securety holes, esp with qmail.
>
> --
> -Rune
>
> Einsteins theory of Relativity mean that no matter what direction you go
> in life you have a relative that has a theory...
>
> In the Depths of the minds of the insane Fantasy and Reality are the
> same...
>
> On Tue, 31 Aug 1999, Jason S. wrote:
>
> :Date: Tue, 31 Aug 1999 15:24:44 -0400 (EDT)
> :From: Jason S. <jason@sn.com>
> :Reply-To: plug@lists.nothinbut.net
> :To: plug@lists.nothinbut.net
> :Subject: Re: [Plug] Microsoft Striks Again
> :
> :Run a packet sniffer on a box on you local lan with an interface in
> :pomisc mode, capture port 110, tcp and jot down everyones
> :username/password and read their mail while they retrieve it.
> :
> :Its not overly hard in that situation. POP, and SMTP are clear text,
> :and wide open for sniffing.
> :
> :J.
> :
> :When I grow up, I wanna be more like me.
> :I had a clue. I didn't like it. I took it back and exchanged it for an
> :attitude.
> :
> :On Tue, 31 Aug 1999, Nick R wrote:
> :
> :> Outside of social engineering and brute force crack attempts how's this so
> :> w/ POP3?
> :>
> :>
> :> >From: Morgan Wajda-Levie <mpwl@locke.ccil.org>
> :> >Reply-To: plug@lists.nothinbut.net
> :> >To: plug@lists.nothinbut.net
> :> >Subject: Re: [Plug] Microsoft Striks Again
> :> >Date: Tue, 31 Aug 1999 07:12:16 -0500
> :> >
> :> >On Mon, Aug 30, 1999 at 10:20:02PM -0400, Andy Bradley wrote:
> :> > > http://www.cnn.com/TECH/computing/9908/30/hotmail.06/
> :> >
> :> >The only problem I have with this and a lot of other coverage of the
> :> >cracking is that it makes the assumption that e-mail normally is
> :> >secure. The hotmail cracking makes things a lot easier, but reading
> :> >other people's e-mail is still a juvenile task, as is faking their
> :> >address. That's what pgp is for.
> :> >
> :> >--
> :> >Morgan Wajda-Levie
> :> >http://www.worldaxes.com/wajdalev
> :> >PGP fingerprint:
> :> >A353 C750 660E D8B6 5616 F4D8 7771 DD21 7BF6 221C
> :> >http://www.worldaxes.com/wajdalev/public.asc for PGP key
> :> >encrypted mail preferred
> :> ><< attach3 >>
> :>
> :> ______________________________________________________
> :> Get Your Private, Free Email at http://www.hotmail.com
> :>
> :> _______________________________________________
> :> Plug maillist - Plug@lists.nothinbut.net
> :> http://lists.nothinbut.net/mail/listinfo/plug
> :>
> :
> :
> :_______________________________________________
> :Plug maillist - Plug@lists.nothinbut.net
> :http://lists.nothinbut.net/mail/listinfo/plug
> :
>
>
> _______________________________________________
> Plug maillist - Plug@lists.nothinbut.net
> http://lists.nothinbut.net/mail/listinfo/plug
>
_______________________________________________
Plug maillist - Plug@lists.nothinbut.net
http://lists.nothinbut.net/mail/listinfo/plug
|
|