I love this quote: Paller said it is "highly unlikely" that the process control computers behind critical infrastructure like power in the United States would run on the Windows operating system.
http://story.news.yahoo.com/news?tmpl=story&cid=569&ncid=738&e=1&u=/nm/20030 814/tc_nm/power_outage_worm_dc -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of KF Sent: Thursday, August 14, 2003 10:28 PM To: Andre Ludwig Cc: '[EMAIL PROTECTED]' Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?] > > >I have found out that RPC is >used on several SCADA systems, to what extent i do not know, nor do i know >if they are vulnerable to the recent rash of RPC based exploits. If someone >with more knowledge on these systems can please come forward i would greatly >appreciate it. > > > yeah kinda interesting... the SCADA link here: http://www.automationtechies.com/sitepages/pid641.php includes links to the following documents. DCOM Whitepaper <http://www.iconics.com/support/pdfs/whitepapers/Dcom_whitepaper.pdf> (PDF, 149K) DCOM Quick Start <http://www.iconics.com/support/pdfs/whitepapers/DCOM%20QuickStart.pdf> (PDF, 263K) Microsoft DCOM Technical Overview <http://www.iconics.com/support/pdfs/whitepapers/msdcom.pdf> (PDF, here is a good doc on SCADA security in general physical and digital. http://www.automationtechies.com/sitepages/pid1062.php -KF _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
