[EMAIL PROTECTED] enscribed thusly:
> Is Novell Network is more secure than IP based network ?
Snicker... I don't think so...
I know of at least one "exploit" that let a user create a suid
root file for Unix on a Novel NFS server just by making it "read only".
When I confronted a Novel support rep (who I've know for a long time
and ranks rather low on my "cluefull meter"), he looked shocked and confused
and didn't know how to respond. I heard that Novell would no longer respond
to the original exploit author and I sure as hell never heard back from
them. In other words - assume it's still vulnerable and that they really
don't give a flying ****. Considering the insular, closed, proprietary
environment they are coming from, I don't really think they have much of
a security clue.
Hysterical, historical note... Somewhere in my archvies (don't ask,
it's buried way to deep for even me to find) I've got a copy of the viral
launcher that bypassed the login security on Netware 3.x to propagate
virii on Novell systems. It used the same function calls that the Netware
login program used for authentication.
> Where can I get about security matter of Novell NetWare ?
> Thanks
> Savi
Mike
--
Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
(The Mad Wizard) | (770) 925-8248 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
