Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-Disclosure] Cleanining viruses from netware

from [Gadi Evron] Network Security [Permanent Link]
Subject: Re: [Full-Disclosure] Cleanining viruses from netware
Date: Mon, 31 May 2004 15:53:39 +0200
Dowling, Gabrielle wrote: 
Gadi....

What exactly are you encountering?

If you aren't running an av nlm on the server(s) in question, you should be 
able to map a drive to the system from even a workstation, and run a scan from 
there.

I'm not aware of anything that can actually infect a netware system, just 
things that can drop latent infectious content when write rights are relatively 
open.

What exactly are you dealing with? 

A certain mass mailer which infected a netware network.

I've dealt with most of it, but I am looking for some script similar to what a friend of mine once wrote for active directory, using LDAP and running from a domain admin account.

The script scanned the network and remotely removed the infection... Which is what I am looking for, if one such as that already exist and can be shared.. only for netware.

Thanks for your answer,

        Gadi Evron.


--
Email: ge@linuxbox.org.  Work: gadie@cbs.gov.il. Backup: ge@warp.mx.dk.
Phone: +972-50-428610 (Cell).

PGP key for attachments: http://vapid.reprehensible.net/~ge/Gadi_Evron.asc
ID: 0xD9216A06 FP: 5BB0 D3E2 D3C1 19B7 2104 C0D0 A7B3 1CF7 D921 6A06
GPG key for encrypted email: http://vapid.reprehensible.net/~ge/Gadi_Evron_Emails.asc
ID: 0x06C7D450 FP: 3B88 845A DF1F 4062 E5BA 569A A87E 8DB7 06C7 D450


[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Full-Disclosure] new rsync :) exploit rsync-too-open, listreader
Next by Date:  Re: [Full-Disclosure] Cleanining viruses from netware, Gadi Evron
Previous by Thread:  [Full-Disclosure] Cleanining viruses from netware, Dowling, Gabrielle
Next by Thread:  Re: [Full-Disclosure] Cleanining viruses from netware, Gadi Evron
Indexes:  [Date] [Thread] [Top] [All Lists]