From owner-freebsd-questions Wed Dec 2 18:42:00 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA13749 for freebsd-questions-outgoing; Wed, 2 Dec 1998 18:42:00 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from iway1.iw.net (iway1.iw.net [204.157.148.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA13741 for ; Wed, 2 Dec 1998 18:41:58 -0800 (PST) (envelope-from dragonknight@dtgnet.com) Received: from death (rap-dialup-31.dtgnet.com [216.16.6.31] (may be forged)) by iway1.iw.net (8.8.8/8.8.8) with SMTP id UAA13404; Wed, 2 Dec 1998 20:41:00 -0600 (CST) Message-ID: <002201be1e66$04d332c0$0101a8c0@death> From: "Dragon Knight" To: "Christopher Michaels - SSG" , "'Gravel, Emmanuel (AZ77)'" , Subject: Re: back orifice Date: Wed, 2 Dec 1998 19:38:29 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >Not to mention that any malicious user inside of the firewall can wreak >total havoc on any systems with Back Orifice installed. My understanding of >the purpose of that software was to point out and exploit a security hole in >Win95 to gain a response from Microsoft. Not to be used as a legitimate >administration tool. (although it does sound promising). > There is a utility that comes with the BO server to password protect the sessions. And also to change the IP it serves from. Shouldn't this alleviate most security concerns? Samuel Greear To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message