[19694] in bugtraq
Re: FW: Vulnerability in Novell Netware
daemon@ATHENA.MIT.EDU (Krzysztof Halasa)
Mon Mar 19 14:11:06 2001
Content-Type: text/plain; charset=US-ASCII
MIME-Version: 1.0
Message-ID: <m3itl94zzd.fsf@intrepid.pm.waw.pl>
Date: Fri, 16 Mar 2001 14:15:02 +0100
Reply-To: Krzysztof Halasa <khc@INTREPID.PM.WAW.PL>
From: Krzysztof Halasa <khc@INTREPID.PM.WAW.PL>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Jeffrey Seaton's message of "Wed, 14 Mar 2001 16:25:17 -0600"
Jeffrey Seaton <jseaton@TCSERVE.COM> writes:
> Yeah I took a look at this but it is not a problem at all. If a system
> administrator is worried about someone logging in as a print server just
> extend the objects attributes and add a simultaneous login attribute. You
> can set this to 1 and only the print server will login. You can do this
> with Console1 or schemax. These are free utilities with Novell.
It isn't very useful, one can login when the real print server is down.
You can also add station address restrictions for the print server object
(probably using some non-Novell supplied utils). The real security
measure is, as always, assigning the print server a password (and even
that might be circumvented by a MITM attack).
BTW: I haven't done any programming with Netware for few years, but
I remember there is a 'set' command to disable "change to client rights"
feature. Another thing which comes to mind is using regular account
for printing, not root^H^H^H^Hadmin account.
--
Krzysztof Halasa
Network Administrator
