Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-Disclosure] [ Full-Disclosure] A mans got to patch

from [RandallM] Network Security [Permanent Link]
Subject: [Full-Disclosure] [ Full-Disclosure] A mans got to patch
Date: Fri, 30 Apr 2004 19:06:48 -0500 

thank you
Randall M
 

To my mentors:

Let me first give a short history to my situation. I work for a company that
began 10ys ago with three Mac servers and about 25 Mac workstations. 10
years later they have 34 servers, 345 PC workstations and 60 G4/G5 Macs in 5
locations around the USA.



I have been in the IT area for one and half years. I have worked for this
company for one year. Patching was not done as needed due to the growth and
continuous requirements put on the two Techs. For the last three days I have
seen what I believe to be Agobot exploits (searching on names found in the
registry were said to be associated with such). 

I have been reading this list for about three weeks now. I have become more
aware of dangers that await. Frankly I'm scared to death :) I want to begin
the tedious task of patching the servers and workstation and can think of no
better place then here to get some what I feel would be very expert advice
on doing this in the best fashion.

Our current environment: Moved to AD Domain this year. Have yet a mix member
server environment with some of the NT's still with Explorer 5.5 (I can hear
some here thinking "give me your IP! :>) ). I have gone through some of the
servers with Microsoft security scanner and with some I simply went to the
update area. Many had never visited there before as the initial visit loads
the scanner engine. The weakness here is norm for the workstations also. 
We do tape backups nightly. Some of our main problems are the programs that
are still used can't be repaired easily, such as, Dynamics. Also some
servers are running programs that we could never place back on because they
had to be sent off to be loaded by the experts of the software companies.
Another example is the web server with is hanging on by a thread. They paid
nearly $175,000 8 years ago for their online presence. That is no longer
supported and we don't know a dam thing about it except to keep it going!

So here you see my need. My guess is that I have to know something of the
risks with certain patches so as not to get myself in trouble loosing
sensitive material and such not to mention my job for pushing for this to be
done. I don't see this as a simple visit to window update. Your advices
would be greatly appreciated. I don't mind say I'm scared to death.

Randall M
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-Disclosure] [ Full-Disclosure] A mans got to patch, RandallM <=
Previous by Date:  Re: [Full-Disclosure] morning_wood is really a blackhat, Kurt Seifried
Next by Date:  RE: [Full-Disclosure] morning_wood is really a blackhat, Anonymous
Previous by Thread:  [Full-Disclosure] Immunity Shindig Monday in NYC, Dave Aitel
Next by Thread:  [Full-Disclosure] viruses welcome, one and all, John Lalla
Indexes:  [Date] [Thread] [Top] [All Lists]