lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
From: se_cur_ity at hotmail.com (morning_wood)
Subject: Odd Behavior - Windows Messenger Service

Dos 6.2 running win 3.1



----- Original Message ----- 
From: <ops-lists@...itivenetworks.net>
To: <full-disclosure@...ts.netsys.com>
Sent: Thursday, July 17, 2003 12:51 PM
Subject: RE: [Full-Disclosure] Odd Behavior - Windows Messenger Service


> Clearly, this thread is more odd than the behavior of the Windows
> Messenger service.
> 
> Jay, please let us know which OS's are qualified for "serious use"
> according to your standards. List some of these operating systems that
> don't run any network-enabled service in a default install.
> 
> -Jason
> 
> -----Original Message-----
> From: full-disclosure-admin@...ts.netsys.com
> [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Jay
> Sulzberger
> Sent: Wednesday, July 16, 2003 5:34 PM
> To: full-disclosure@...ts.netsys.com
> Cc: Jay Sulzberger
> Subject: Re: [Full-Disclosure] Odd Behavior - Windows Messenger Service
> 
> 
> 
> 
> On Wed, 16 Jul 2003, dos cerveza wrote:
> 
> > The service starts before you login.
> > This is normal behaviour.
> 
> Perhaps.  But this behavior is not sane.
> 
> If this behavior is incorrigible by an ordinary sysadmin using the
> standard
> tools, then that alone disqualifies the OS for serious use, even were
> the
> code free.
> 
> oo--JS.
> 
> 
> > Please read the previous replies you have recieved.
> >
> >
> > ----- Original Message -----
> > From: "morning_wood" <se_cur_ity@...mail.com>
> > Date: Wed, 16 Jul 2003 13:11:46 -0700
> > To: "Martin" <nakal@....de>, <full-disclosure@...ts.netsys.com>
> > Subject: Re: [Full-Disclosure] Odd Behavior - Windows Messenger
> Service
> >
> > > > I can confirm this behavior. This service is enabled on Windows
> 2000
> > > > and XP by default.
> > > > I noticed it on my sister's PC after she clicked away 3
> advertisement
> > > >pop-ups and growling at the PC. I think that the average user does
> > > >not know how to disable it.
> > > > (And btw: NO, the average MS-Windows user is NOT USING any
> firewalls.)
> > > >
> > >
> > >
> > > more to the point... THERE WAS NO LOGIN PERIOD
> > > this was a fresh install.. waiting at the login prompt.. the pop up
> was
> > > there before any user ( admin ) settings initialized or login took
> place.
> > > once again.. this is out of  the box install following all prompts,
> no
> > > sharing etc. ( only setting computer name and workgroup )reboot..
> sit at
> > > login prompt.. login.. pop up was waiting on an uninitialized
> desktop..
> > > this is my question / issue...   NOT my personal security or lack of
> > > knowlege about basic networking / security.
> > > disabling the service is easy, im reporting on default out of the
> box
> > > behavior, not how to get rid of it or protect myself.
> > > please all.. re-read my scenario...
> > >
> > > donnie
> > >
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >
> > --
> > __________________________________________________________
> > Sign-up for your own FREE Personalized E-mail at Mail.com
> > http://www.mail.com/?sr=signup
> >
> > CareerBuilder.com has over 400,000 jobs. Be smarter about your job
> search
> > http://corp.mail.com/careers
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ