From owner-freebsd-questions Wed Dec 2 13:23:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA06277 for freebsd-questions-outgoing; Wed, 2 Dec 1998 13:23:14 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from sbservices.com (relay.sbservices.com [207.51.66.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA06272 for ; Wed, 2 Dec 1998 13:23:13 -0800 (PST) (envelope-from ChrisMic@sbservices.com) Received: from thoth.sbservices.com (root@thoth.sbservices.com [199.174.17.20]) by sbservices.com (8.8.6/8.8.6) with ESMTP id QAA23588; Wed, 2 Dec 1998 16:26:42 -0500 (EST) Received: from site2s1.sbservices.com (site2.sbservices.com [169.2.160.40]) by thoth.sbservices.com (8.7.5/8.7.3) with ESMTP id QAA03143; Wed, 2 Dec 1998 16:20:19 -0500 (EST) Received: by site2s1 with Internet Mail Service (5.5.2232.9) id ; Wed, 2 Dec 1998 16:23:03 -0500 Message-ID: <6C37EE640B78D2118D2F00A0C90FCB441A5CF7@site2s1> From: Christopher Michaels - SSG To: "'Gravel, Emmanuel (AZ77)'" , questions@FreeBSD.ORG Subject: RE: back orifice Date: Wed, 2 Dec 1998 16:22:57 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2232.9) Content-Type: text/plain Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Not to mention that any malicious user inside of the firewall can wreak total havoc on any systems with Back Orifice installed. My understanding of the purpose of that software was to point out and exploit a security hole in Win95 to gain a response from Microsoft. Not to be used as a legitimate administration tool. (although it does sound promising). > -----Original Message----- > From: Gravel, Emmanuel (AZ77) [SMTP:Emmanuel.Gravel@CAS.honeywell.com] > Sent: Wednesday, December 02, 1998 4:03 PM > To: 'gkshenaut@ucdavis.edu'; questions@FreeBSD.ORG > Subject: RE: back orifice > > >So I did a web search and found out about it: it's a freeware remote > >access tool for windows 95+, and there is in fact a *nix client > >for it. I'm wondering whether this works as well as it sounds on > >FreeBSD. Has anyone tried it? > > I haven't tried it myself, but I know it can be a MAJOR security hole. > Anyone which has the client can scan the net for listening ports of > the BackOrifice server. From there they can gain access to the > machine. So unless you have your Win95 machines behind a > firewall that blocks portscans of the affected ports (or even more > added security features) I'd strongly recommend not to install it. > That is, if the server doesn't have the ability to deny connections > from untrusted IP's. > > Good luck! > > Manu > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message