[9860] in cryptography@c2.net mail archive
Re: private-sector keystroke logger...
daemon@ATHENA.MIT.EDU (pasward@big.uwaterloo.ca)
Tue Nov 27 17:51:04 2001
From: <pasward@big.uwaterloo.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <15364.3150.469736.211152@tolstoy.uwaterloo.ca>
Date: Tue, 27 Nov 2001 16:57:34 -0500
To: "Jay D. Dyson" <jdyson@treachery.net>
Cc: Cryptography List <cryptography@wasabisystems.com>
In-Reply-To: <Pine.GSO.3.96.1011127124723.21651B-100000@crypto>
Jay D. Dyson writes:
> On 27 Nov 2001, Derek Atkins wrote:
>
> > Hrm, how about a worm with a built-in HTTP server that installs itself
> > on some non-standard port, say TCP/28462 (to pick one at random)?
>
> Craftier still, backdoor an existing service that behaves normally
> until it receives a few specially-crafted packets, then it opens a high
> port for direct login or data retrieval.
Neither of these will get past a firewall on an uncompromised machine.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
