You might try to download and use Hackershield from BindView Development at
www.bindview.com. It does a pretty thorough job of finding many of the holes
in system. The trial download will work on one machine (just install it on
that one). It does require that you be logged in as Administrator and that
it can use the system account. I just used it and was pleasantly surprised.
It found MANY of the MOST common problems. Easy install, but does require
rebooting. Can even fix many problems, just make sure it isn't fixing
something that you really need.
(BTW, this is not a plug, even though I was employee number 30 something
when they were young and struggling. lol)
Gary McNeel, Jr.
Project Manager - DAC-Net, Research & Graduate Studies
Rice University - Houston
[Lovett Hall] 713-348-6266 (Primary)
[DAC] 713-348-5184
[M] 713-962-0885
[H] 713-723-9240
"The genius of our ruling class is that it has kept a majority of the people
from ever questioning the inequity of a system where most people drudge
along, paying heavy taxes for which they get nothing in return."
-Gore Vidal
> -----Original Message-----
> From: Steve Pierce [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, April 04, 2000 11:31 AM
> To: [EMAIL PROTECTED]
> Subject: RE: Security holes revisited -- reward offered
>
>
> How about just turn off the system. Seriously, is this for an unlimited
> period and did your boss be stupid and pay in advance or will pay upon
> success.
>
> Make sure you are not vulnerable to social engineering where the guy calls
> and gets passwords from another employee.
>
> - Steve
>
>
> -----Original Message-----
> From: Nick Call [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, April 04, 2000 11:44 AM
> To: [EMAIL PROTECTED]
> Subject: Security holes revisited -- reward offered
>
>
> Ok, fellow Listees, here's the deal...
>
> My boss's daughter has a boyfriend.. (can you smell the trouble
> already???). He is bent out of shape over the fact that I did
> not recommend
> that we hire him (I interviewed him and gave his skill sets an honest,
> thorough exam). He is good at A/V stuff, but his web experience/database
> experience is null. Anyway, back to the situation...... He has convinced
> the boss to pay him 2 grand to attempt to hack the system I built. He
> claims to be a super hacker, blah, blah, blah. I am not too
> confident that
> he can do it, but there is a small chance....
>
> Multiple minds are better than one. I have gone over and over
> all the stuff
> I know, but I am more than likely missing some stuff. Anyone
> care to share
> their CF/NT/IIS security checklist or other advice?
>
> It's escalated into all-out war. He is going to stop at nothing
> to make me
> look bad, and I will stop at nothing to prevent him from succeeding.
>
> Thanks in advance. I will custom print 5 free T-shirts with your logo (in
> one color) on them if you give me advice that plugs up a hole
> that I didn't
> know about.
>
>
> Thanks in advance.
> Nick Call
> [EMAIL PROTECTED]
> http://www.graphixonline.com
>
>
> ------------------------------------------------------------------
> ----------
> --
> Archives: http://www.eGroups.com/list/cf-talk
> To Unsubscribe visit
> http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
> send a message to [EMAIL PROTECTED] with 'unsubscribe' in
> the body.
>
> ------------------------------------------------------------------
> ------------
> Archives: http://www.eGroups.com/list/cf-talk
> To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
------------------------------------------------------------------------------
Archives: http://www.eGroups.com/list/cf-talk
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
