lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <000601c362dc$a32bf500$6401a8c0@redmeat>
From: tetsujin at comcast.net (tetsujin)
Subject: east coast powergrid / SCADA [OT?]

I love this quote: 

Paller said it is "highly unlikely" that the process control computers
behind critical infrastructure like power in the United States would run on
the Windows operating system.

http://story.news.yahoo.com/news?tmpl=story&cid=569&ncid=738&e=1&u=/nm/20030
814/tc_nm/power_outage_worm_dc 

-----Original Message-----
From: full-disclosure-admin@...ts.netsys.com
[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of KF
Sent: Thursday, August 14, 2003 10:28 PM
To: Andre Ludwig
Cc: 'full-disclosure@...ts.netsys.com'
Subject: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]

>
>
>I have found out that RPC is
>used on several SCADA systems, to what extent i do not know, nor do i know
>if they are vulnerable to the recent rash of RPC based exploits.  If
someone
>with more knowledge on these systems can please come forward i would
greatly
>appreciate it. 
>
>  
>
yeah kinda interesting... the SCADA link here: 
http://www.automationtechies.com/sitepages/pid641.php
includes links to the following documents.

DCOM Whitepaper 
<http://www.iconics.com/support/pdfs/whitepapers/Dcom_whitepaper.pdf> 
(PDF, 149K)

DCOM Quick Start 
<http://www.iconics.com/support/pdfs/whitepapers/DCOM%20QuickStart.pdf> 
(PDF, 263K)

Microsoft DCOM Technical Overview 
<http://www.iconics.com/support/pdfs/whitepapers/msdcom.pdf> (PDF,

here is a good doc on SCADA security in general physical and digital.
http://www.automationtechies.com/sitepages/pid1062.php

-KF




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ