Hacking ...

[jad]

Some B*st*rd with too much time on their hands tried some very simple hacking on one of our solaris boxes, via the web server ...

however he seemed to be under the misapprehension that we were running on a windows based machine ...

worse than that he was connecting from a static IP from a windows box with no password set for Administrator and fat based filing system (i.e. no user/password protection on files)

my boss put a file on his machine (using samba), on his desktop that said 'It's a good job i'm not vindictive, don't hack' ...

Just wondering what any of you would have done ...

 

[xkjdhdg]

I have turned off everything but ftp and telnet. Then I have ran Titan to show me all of the holes in the system.

 

[jad]

ohh ... we aren't worried about that ... we don't have ftp turned on, or telnet, just ssh and have ipf on the machine, but we had a web server running cos we wanted to do some testing, and my boss decided to run it at port 80 for some reason ... and we just watched the traffic ...

what is titan by the way?

 

[xkjdhdg]

Titan is a program that will look at everything on your system for holes hackers can get in and tell you how to fix it. It is free and can be download for Sun's web site.

 

[jad]

btw someone else tried getting in the same way (from a dhcp'd account) ... exactly the same way ... i'm assuming there is a new tool around for trying to hack IIE web servers ...

 

[bigmac13]

does anyone know the link to titan on sun's page?

 

[alray]

We seem to get TITAN from :-

http://www.fish.com/titan/

looks to be all sorts of things about TITAN here including a download.

HTH

Ray