[1025] in Intrusion Detection Systems
IDS: ccMail SMTPLINK Undeliverable Message
daemon@ATHENA.MIT.EDU (ccMail SMTPLINK)
Tue Sep 16 14:33:25 1997
Date: Tue, 16 Sep 97 11:39:08 EST
From: nm@mail.amsinc.com (ccMail SMTPLINK)
To: ids@uow.edu.au
Reply-To: ids@wyrm.its.uow.edu.au
User dirk_illenberger is not defined
Original text follows
----------------------------------------------
Received: from ams.amsinc.com by mail.amsinc.com (SMTPLINK V2.11.01)
; Tue, 16 Sep 97 11:39:01 EST
Return-Path: <owner-ids@wyrm.its.uow.edu.au>
Received: from wyrm.its.uow.edu.au by ams.amsinc.com (4.1/SMI-4.1)
id AA28830; Tue, 16 Sep 97 11:45:11 EDT
Received: (from majordom@localhost)
by wyrm.its.uow.edu.au (8.8.7/8.8.6) id XAA26529
for ids-outgoing; Mon, 15 Sep 1997 23:17:21 +1000 (EST)
X-Authentication-Warning: wyrm.its.uow.edu.au: majordom set sender to owner-ids@wyrm.its.uow.edu.au using -f
Date: Mon, 15 Sep 97 00:29:26 EST
From: "Administrator" <Administrator_at_CSPRINGS@smtplink.cta.com>
Message-Id: <9708158743.AA874340608@smtplink.cta.com>
To: ids@wyrm.its.uow.edu.au
Subject: IDS: Message not deliverable
Sender: owner-ids@uow.edu.au
Precedence: bulk
Reply-To: ids@uow.edu.au
I have worked on half a dozen different networks over the past six
years and the two most effective intrusions I saw were through
out-of-the-box Windows NT installations with dial-up modems.
Recently I ran my own command files to check the security on 12
newly installed NT boxes and every one of them had most of it security
turned off. This looks like it is going to be a continuing problem.
Does anyone have any experience with a Windows NT based real-time
intrusion detection system that is commercially available?
Hog Farmer,
formerly with
Tropical Hog Improvement Programme
