Hi all,
Well we (ie - the company I work for) is in the process of deploying a
third party Microsoft NT/IIS/SQL Server based intranet product which will
hold lots of personnel information, including payroll details ect.
While I am not happy that they are doing this (it is all currently Linux
based) - I have been given permission to crack the thing and show them
just how insecure all that data is prior to production rollout.
In my usual style I plan on overdoing it ;)
I already have a number of direct and indirect attacks planned, but I am
happy to receive more from people who have their favourite attacks - and
as it is unlikely any bugs have been fixed - will probably still work. So
if you have any favourite, please let me know (Not the SLUG list - it
isn't really linux related!)
Please note - this is an INTERNAL system. Any attacks/probes or remotely
suspitious activity against my servers from the Internet will be dealt
with - harshly.
Thanks
Jason.
---
Jason Ball
Electronic Commerce Specialist
Corporate Express Australia Ltd
Phone: +61 2 9335 0374 Fax: +61 2 9335 0753
Email: [EMAIL PROTECTED]
--
SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au
To unsubscribe send email to [EMAIL PROTECTED] with
unsubscribe in the text
