RE: [Full-Disclosure] east coast powergrid / SCADA [OT?]

["tetsujin" <tetsujin@comcast.net>]

I love this quote: 

Paller said it is "highly unlikely" that the process control computers
behind critical infrastructure like power in the United States would run on
the Windows operating system.

http://story.news.yahoo.com/news?tmpl=story&cid=569&ncid=738&e=1&u=/nm/20030
814/tc_nm/power_outage_worm_dc 

-----Original Message-----
From: full-disclosure-admin@lists.netsys.com
[mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of KF
Sent: Thursday, August 14, 2003 10:28 PM
To: Andre Ludwig
Cc: 'full-disclosure@lists.netsys.com'
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]

>
>
>I have found out that RPC is
>used on several SCADA systems, to what extent i do not know, nor do i know
>if they are vulnerable to the recent rash of RPC based exploits.  If
someone
>with more knowledge on these systems can please come forward i would
greatly
>appreciate it. 
>
>  
>
yeah kinda interesting... the SCADA link here: 
http://www.automationtechies.com/sitepages/pid641.php
includes links to the following documents.

DCOM Whitepaper 
<http://www.iconics.com/support/pdfs/whitepapers/Dcom_whitepaper.pdf> 
(PDF, 149K)

DCOM Quick Start 
<http://www.iconics.com/support/pdfs/whitepapers/DCOM%20QuickStart.pdf> 
(PDF, 263K)

Microsoft DCOM Technical Overview 
<http://www.iconics.com/support/pdfs/whitepapers/msdcom.pdf> (PDF,

here is a good doc on SCADA security in general physical and digital.
http://www.automationtechies.com/sitepages/pid1062.php

-KF




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html