[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] HP Tandem NonStop servers

To: KF <dotslash@snosoft.com>
Subject: Re: [Full-Disclosure] HP Tandem NonStop servers
From: "Larry W. Cashdollar" <lwc@vapid.ath.cx>
Date: Thu, 21 Aug 2003 12:50:31 -0400 (EDT)

On Thu, 21 Aug 2003, KF wrote:

> Well if its a unix based OS I would start with a suid / sgid listing...
> as well as checking the listening services...
>
> Shoot me a find / -perm -4000 and a find / -perm -2000 along with a
> netstat -a and we can go from there.
>
> If you are willing to give up a shell I'll beat on the suids myself for
> a bit. =]
> -KF

Also see what type of hash function is used to store
passwords(md5?,crypt()) as well has any password file shadowing.
Check out system directory and file permissions as well.  Is there alot
of cruft installed? X11 japanise language fonts etc..? what are the
default system accounts in /etc/passwd?  look for that as well.

-- Larry C$

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- Re: [Full-Disclosure] HP Tandem NonStop servers
  - From: KF <dotslash@snosoft.com>

Prev by Date: [Full-Disclosure] Anyone? Important Security Update for the .NET Messenger Service
Next by Date: Re: [Full-Disclosure] HP Tandem NonStop servers
Prev by thread: Re: [Full-Disclosure] HP Tandem NonStop servers
Next by thread: Re: [Full-Disclosure] HP Tandem NonStop servers and other off topic crap
Index(es):
- Date
- Thread