[207] in DeathTongue Changes
Re: Pismere
daemon@ATHENA.MIT.EDU (Richard Tibbetts)
Sun Apr 22 12:30:45 2001
Date: Sun, 22 Apr 2001 12:30:32 -0400
From: Richard Tibbetts <tibbetts@MIT.EDU>
To: "Alejandro R. Sedeno" <asedeno@MIT.EDU>
Cc: licks@MIT.EDU
Message-ID: <20010422123031.H25682@multics.mit.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <45E3831E8A549C45A8E9C40ADC729DEA0319A5@shadowrealm.hyrule.mit.edu>; from asedeno@MIT.EDU on Sun, Apr 22, 2001 at 12:12:46PM -0400
On Sun, Apr 22, 2001 at 12:12:46PM -0400, Alejandro R. Sedeno wrote:
> You now log in with your Athena principle. Make your profile world
> readable to be able to log in and use it again. I hear this situation
> will change later. (profile will be in your Athena home directory:
> ~/.winprofile)
So, should we be encouraging users who want to (for example) print
something from Word to log in using their Athena username and
password, or is the machine too bleeding edge for that at this point?
We used to have a local login sipb0 with no password. Does that make
sense to continue, or should we attempt to secure a full blown athena
account (such as one of the sipbN accouts, or a new account) for this
purpose?
Also, the machine seems to be listening for more things than it
probably needs to (though I am certainly not a windows guru).
Specifically:
innocuous:~# nmap -O dt
Starting nmap V. 2.54BETA22 ( www.insecure.org/nmap/ )
Interesting ports on DEATHTONGUE.MIT.EDU (18.187.1.72):
(The 1537 ports scanned but not shown below are in state: closed)
Port State Service
135/tcp open loc-srv
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1068/tcp open instl_bootc
3389/tcp open msrdp
Remote OS guesses: Windows Me or Windows 2000 RC1 through final
release, Windows Millenium Edition v4.90.3000
It seems that unless we are deliberately doing file sharing, 135 and
139 are not neccessary. I don't know what the rest of this stuff is. I
certainly defer to you about what is required, I just want to make
sure we aren't running non-required services that could get us cracked.
Great work, looks good. I wonder if we will find outselves teaching
"Installing Pismere" come next IAP.
tibbetts
