2009-09-22 Initial Post
Tested with Windows Server 2003 SP2 and Windows XP Professional SP3.
An account that has Read permission to a share, but no permissions at all to the shared folder itself, can still traverse the shared folder to get to a subfolder for which it does have permission to. (more...)
2008-12-24 Initial Post
The other month I was wondering if HTTP SSL traffic could be spoofed by some type of man-in-the-middle scenario and just the other day I read an article (more...)
2008-01-26 Initial Post
From what I’ve been able to determine, these types of attacks are very difficult against an account database such as Active Directory. Here are my thoughts on this: (more...)
2008-12-30 Initial Post
Data travelling in clear text is vulnerable to network sniffers, but technologies such as network switches and VLANs make it difficult to actually sniff all packets. Switches and VLANs contain broadcast traffic. (more...)
2009-07-28 Initial Post
Tested on Windows XP SP3 with Cisco VPN Client 5.0 and Windows Server 2003 SP2 AD
Remote users who need to sync their laptop’s locally cached password with their AD password can do the following: (more...)
You are currently browsing the archives for the IT Security category.
