+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 29 of 29
Windows Thread, Well it finally happened in Technical; Originally Posted by Midget so it's a standard thing from RM to have "removed" then? Yes. But there's no excuse ...
  1. #16

    webman's Avatar
    Join Date
    Nov 2005
    Location
    North East England
    Posts
    8,412
    Thank Post
    642
    Thanked 963 Times in 663 Posts
    Blog Entries
    2
    Rep Power
    326

    Re: Well it finally happened

    Quote Originally Posted by Midget
    so it's a standard thing from RM to have "removed" then?
    Yes. But there's no excuse for people ignoring RM's advice and common sense of changing these ASAP

  2. #17
    eejit's Avatar
    Join Date
    Jun 2005
    Location
    Ireland
    Posts
    606
    Thank Post
    52
    Thanked 12 Times in 12 Posts
    Rep Power
    22

    Re: Well it finally happened

    Guys, probably not a good idea to list those default passwords here.

  3. #18
    tosca925's Avatar
    Join Date
    Aug 2005
    Location
    Midlands
    Posts
    1,547
    Thank Post
    4
    Thanked 4 Times in 4 Posts
    Rep Power
    22

    Re: Well it finally happened

    Guys, probably not a good idea to list those default passwords here
    Probably not a good idea if you have these default passwords still any how.

  4. #19
    mmoseley's Avatar
    Join Date
    Apr 2007
    Location
    Birmingham
    Posts
    756
    Thank Post
    109
    Thanked 105 Times in 80 Posts
    Blog Entries
    2
    Rep Power
    44

    Re: Well it finally happened

    Well i must admit, i used to "PLAY AROUND" with the network we had at school, and i must admit the techys we had always used to know it was me (and another friend), We NEVER did and i personally never would do anything malicous to the network that was never my intention it was basically find the loopholes in the network and stop other users doing the same, which the techy's appreciated!

    Must admit though paying the students a few quid to grass on there mates is a brilliant idea!

  5. #20
    fooby's Avatar
    Join Date
    Dec 2005
    Posts
    351
    Thank Post
    0
    Thanked 5 Times in 4 Posts
    Rep Power
    19

    Re: Well it finally happened

    I think it might be an idea to set passwords to words that people really wouldnt want as passwords, im thinking passwords such as bad swear words etc. I would think that people might want to change these. Or default passwords such as "vCF&£g45n" that might wind ppl up enough to change. Or potentially secure enough to leave (as long as its undocumented)

    fooby

  6. #21

    Join Date
    Apr 2007
    Location
    London
    Posts
    235
    Thank Post
    6
    Thanked 2 Times in 2 Posts
    Rep Power
    17

    Re: Well it finally happened

    Sorry to hear about it Gambit. It's horrible when that sort of thing happens.
    And you would have thought that a password that is telling your to change it would make some people think to change it but thats not always the case. I think RM should put some sort of "Force change of password after a few logons" rule for their admin passwords, but alas that would not help you now.

    As well as doing all those other things the guys have suggested I would actually recommend running a couple of anti-spyware and virus programs as just one of each does not always cut it. Use some of the freeware ones like Spybot and Avast.
    Also, if you think there may still be backdoors in the system then maybe try setting up a honeypot trap to see if anyone goes for it. I would use something like Helix Linux boot disk to do this. Alternatively if the server is severly comprimised then it might be quicker to just start again from scratch with it. Still.. better you than me. :P

    Oh, and you might want to take a copy of some of the more relevent logfiles if you haven't already done so before they start to overwrite themselves with newer logs.

  7. #22

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,807
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Well it finally happened

    If the police are involved, they will probably take the DC as evidence.

    Therefore, you need a full backup from prior to the incident and some spare hardware to restore to.

    While were here, I'd like to remind everyone of the Enterprise best practises security guides available on Technet.

    http://www.microsoft.com/technet/sec...risesecbp.mspx

    Further help and assistance can be had in the Security forum for anyone who wants it.

  8. #23
    tarquel's Avatar
    Join Date
    Jun 2005
    Location
    Powys, Mid-Wales, UK
    Posts
    1,740
    Thank Post
    13
    Thanked 45 Times in 35 Posts
    Rep Power
    29

    Re: Well it finally happened

    Quote Originally Posted by eejit
    Guys, probably not a good idea to list those default passwords here.
    Quite right.

    done

    Whether people should change default passwords or not, it's one I've seen in alot of things, and people are imperfect so accidentally leaving a default password can happen.

    Nath.

  9. #24

    Join Date
    May 2006
    Posts
    1,319
    Thank Post
    101
    Thanked 25 Times in 18 Posts
    Rep Power
    25

    Re: Well it finally happened

    I can understand the point of removing the passwords, but personally I am not sure if it is worth it. I imagined myself in a position of a malicious student trying to hack into my school network and my immediate reaction was to to do a google search using terms related to the above discussion. Guess what? The very first result gave away all . If I can do that within 10 seconds, I'm sure other people can as well .

  10. #25

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,807
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Well it finally happened

    I could mention something about 'Security' and 'Obscurity' at this point. But I'm getting bored of repeating myself.

  11. #26

    Join Date
    Jan 2007
    Location
    Birmingham
    Posts
    807
    Thank Post
    29
    Thanked 36 Times in 24 Posts
    Rep Power
    26

    Re: Well it finally happened

    a search for rm admin password gives the following website as the 6th result:

    http://www.virus.org/default-password/view/R/1/

    default passwords for as many pieces of software as they can get. Whilst i agree that it may not be best practice to list sites such as this, or discussing the default passwords, doing to serves a purpose; reminding people to change the basic password. The information is out there for students, discussing it in here is more likely to get the attention of NMs / techies so they can tighten up security. Listing the password may make somebody sit up and think "oh, i thought that password had been set specifically for us, i'd better change it."

  12. #27

    Join Date
    Feb 2006
    Posts
    1,187
    Thank Post
    0
    Thanked 1 Time in 1 Post
    Rep Power
    0

    Re: Well it finally happened

    Ever thought you'd see the day when Geoff would refer other users to Microsoft for security best practices.

    Next thing you'll know Bangladesh'll thrash Australia at the Cricket World Cup

  13. #28

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,807
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Well it finally happened

    Well they did write (most) of the operating system, so it's either them or the NSA

  14. #29

    GrumbleDook's Avatar
    Join Date
    Jul 2005
    Location
    Gosport, Hampshire
    Posts
    9,968
    Thank Post
    1,355
    Thanked 1,814 Times in 1,126 Posts
    Blog Entries
    19
    Rep Power
    600

    Re: Well it finally happened

    Ah ... the good old NSA IIS4 hardening white paper ... those were the days!

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Anyone know what's happened to the TES site?
    By becktonboy in forum General Chat
    Replies: 0
    Last Post: 3rd June 2007, 07:49 AM
  2. wii finally
    By plexer in forum Gaming
    Replies: 2
    Last Post: 9th May 2007, 03:34 PM
  3. What would've happened if Microsoft had made the iPod....
    By indiegirl in forum Jokes/Interweb Things
    Replies: 1
    Last Post: 1st March 2006, 01:08 PM
  4. Nurse! The screens! It's happened again!!
    By ajbritton in forum General Chat
    Replies: 11
    Last Post: 5th February 2006, 11:47 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •