IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / News Picks Forum / Another fun thing.
Post #423,004
by mmoffitt
3/23/18 1:31:03 PM
3/23/18 1:31:03 PM
Reply
New Another fun thing.
I had a client (this was a long time ago) who'd first installed Exchange 4.x or 5.0 as part of one of those Small Business Server suites. They wanted to upgrade to a full Exchange 5.5 (IIRC) stand alone server. I quoted 4 hours to do the job (chiefly because I never quoted anything less than 4 hours and all my work then was always NTE). The client balked. I told him that if he was going to have his help desk tech do it, make sure he's careful because, for instance, the default for the upgrade is to set the server up as an open relay and they had their exchange server outside the firewall. I was told it wouldn't be a problem because "we're just a little company. No one will know we're on the Internet." Then, two weeks later, the same guy called me in a panic. He said he'd been "interviewed by FBI agents who were interested in all the child porn that was arriving in Australia or somewhere" that had bounced off their exchange server. That mess took me *and* my partner a while to clean up.
bcnu,
Mikem

It's mourning in America again.
Post #423,005
by Andrew Grygus
Picture of Andrew Grygus
3/23/18 1:39:39 PM
3/23/18 1:39:39 PM
Reply
New Yeah, I ran into the open relay problem myself.
Fortunately, not much damage was done - just their Internet service provider cut them off.

More fortunately, I didn't install that Exchange Server so they couldn't blame me. It was a hassle to fix.

Later their Exchange Server bombed and had to be re-installed. Unfortunately, they didn't remember their company code, which means none of their email could be accessed.

After some study, I found a severe security flaw in Exchange Server that allowed me to extract the company code. I published that on the Internet and got a few emails of thanks for all the time I'd saved for administrators.
Post #423,007
by drook
Picture of drook
3/23/18 1:54:41 PM
3/23/18 1:54:41 PM
Reply
New Systems guys at the law firm I worked at *turned off* the firewall
They were Windows guys through-and-through. Our ISP had provided a Solaris box that sat in our server room between our network and the world. Or it sat there until they decided that since they didn't know what it was doing it must not be needed so when upgrading some switches they left the yellow box out of the loop.

Shortly thereafter our clients started reporting that they weren't getting email that our attorneys said they had sent. A little investigation showed their systems were bouncing it because our domain had been blacklisted for spam. We were an open relay.
--

Drew
Post #423,006
by Andrew Grygus
Picture of Andrew Grygus
3/23/18 1:51:11 PM
3/23/18 1:51:11 PM
Reply
New The flaw in "safety by obscurity"
The bad guys can presume that a small company using that strategy doesn't have skilled enough support staff to understand the vulnerabilities and fix them. This makes them prime targets.

I've had a couple of clients asking me why their server hard disks were full.

I had one client telling me all the computers I'd supplied were way too slow and needed a serious upgrade. Problem was, those computers were working very hard - but they were working for someone other than the owners.

Yeah, obscurity is an open invitation.
     That didn't take long. - (mmoffitt) - (47) - March 19, 2018, 04:05:49 PM EDT
         I'll wait for the video -NT - (drook) - (42) - March 19, 2018, 04:51:15 PM EDT
             Um, you doubt the veracity of the report? -NT - (mmoffitt) - (30) - March 21, 2018, 08:14:09 AM EDT
                 No - (drook) - (29) - March 21, 2018, 09:14:59 AM EDT
                     Local ABC affiliate video - (Another Scott) - (28) - March 21, 2018, 10:27:11 AM EDT
                         Maybe - (drook) - March 21, 2018, 11:30:31 AM EDT
                         But they *WILL* be pushed out because Shareholders and Banksters need more MONEY. - (mmoffitt) - (24) - March 21, 2018, 12:04:56 PM EDT
                             Great reason to question the motives, but sometimes the "right thing" also make someone rich -NT - (drook) - March 21, 2018, 02:54:11 PM EDT
                             It won't be long before it's the only kind of car I'll be allowed to use! - (a6l6e6x) - (22) - March 21, 2018, 03:37:54 PM EDT
                                 Feh. Mass transit is and always was the answer. - (mmoffitt) - (21) - March 21, 2018, 03:57:50 PM EDT
                                     Mass Transit? - (Andrew Grygus) - (20) - March 21, 2018, 05:56:19 PM EDT
                                         How so? -NT - (mmoffitt) - (19) - March 22, 2018, 08:15:19 AM EDT
                                             Re: How so? - (Andrew Grygus) - (18) - March 22, 2018, 12:11:26 PM EDT
                                                 Okay, it doesn't work for ambulances either. But those are outliers. - (mmoffitt) - (8) - March 22, 2018, 02:55:22 PM EDT
                                                     We also have to look at US geography - (Ashton) - (7) - March 22, 2018, 04:16:12 PM EDT
                                                         There's no reason not to do it, other than infatuation with the car because reasons - (pwhysall) - (6) - March 26, 2018, 03:22:50 AM EDT
                                                             Disagree - (crazy) - (5) - March 26, 2018, 05:11:56 AM EDT
                                                                 Re: Disagree - (pwhysall) - March 27, 2018, 06:31:22 AM EDT
                                                                 Also - (pwhysall) - (3) - March 27, 2018, 06:45:10 AM EDT
                                                                     45-60 for me. - (malraux) - (1) - March 27, 2018, 05:18:35 PM EDT
                                                                         Yeah, I enjoyed my nyc commute. - (crazy) - March 27, 2018, 07:22:20 PM EDT
                                                                     54 miles 40-45 minutes 3.5 hours 1 way public transpo the a 2.5 mile hike. no thanks -NT - (boxley) - March 27, 2018, 06:54:56 PM EDT
                                                 Perhaps they need a permanent techie employee! -NT - (a6l6e6x) - (8) - March 22, 2018, 04:54:05 PM EDT
                                                     Only one of my clients is big enough for that. - (Andrew Grygus) - (6) - March 22, 2018, 09:16:54 PM EDT
                                                         Suit instead of suite? Was that intentional? If so, I like it. :0) - (mmoffitt) - March 23, 2018, 08:00:07 AM EDT
                                                         A fun thing about Microsoft Exchange Server. - (Andrew Grygus) - (4) - March 23, 2018, 12:33:15 PM EDT
                                                             Another fun thing. - (mmoffitt) - (3) - March 23, 2018, 01:31:03 PM EDT
                                                                 Yeah, I ran into the open relay problem myself. - (Andrew Grygus) - (1) - March 23, 2018, 01:39:39 PM EDT
                                                                     Systems guys at the law firm I worked at *turned off* the firewall - (drook) - March 23, 2018, 01:54:41 PM EDT
                                                                 The flaw in "safety by obscurity" - (Andrew Grygus) - March 23, 2018, 01:51:11 PM EDT
                                                     Permanent? - (crazy) - March 24, 2018, 02:53:03 AM EDT
                         Got it backwards - (crazy) - (1) - March 23, 2018, 07:03:52 PM EDT
                             Moi likes your reading-list.. -NT - (Ashton) - March 24, 2018, 05:24:06 AM EDT
             And here's the video - (drook) - (10) - March 21, 2018, 09:10:55 PM EDT
                 Drum has some good questions... - (Another Scott) - (4) - March 21, 2018, 11:29:35 PM EDT
                     Those, plus... - (scoenye) - (2) - March 22, 2018, 04:07:13 PM EDT
                         Agreed, but ... - (drook) - (1) - March 22, 2018, 04:36:35 PM EDT
                             Indeed - (scoenye) - March 22, 2018, 10:58:15 PM EDT
                     Lidar vendor doesn't understand it either - (scoenye) - March 24, 2018, 08:33:28 AM EDT
                 New video ... they're evil, and screwed - (drook) - (4) - March 22, 2018, 10:47:07 PM EDT
                     Not shocked at all... -NT - (Another Scott) - (1) - March 22, 2018, 11:00:47 PM EDT
                         Me neither. Lower quality camera === more profits for shareholders. Capitalism is evil. -NT - (mmoffitt) - March 23, 2018, 07:56:38 AM EDT
                     Confused. What does that video show? - (crazy) - (1) - March 24, 2018, 02:48:24 AM EDT
                         Uber's makes it look unavoidable - (scoenye) - March 24, 2018, 09:11:17 AM EDT
         It will be a brief pause before tests resume. -NT - (a6l6e6x) - March 19, 2018, 11:13:54 PM EDT
         Photos of the scene - (drook) - (2) - March 21, 2018, 04:34:26 PM EDT
             A+ for actually sleuthing ..almost showing that, - (Ashton) - March 21, 2018, 06:24:05 PM EDT
             Multiple faults. - (static) - March 21, 2018, 11:48:46 PM EDT

Hello. My name is Inigo Montoya. You killed my father. Prepare to die.
131 ms