lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
From: jazper at cox.net (jazper)
Subject: Windows covert channel

You would do: more < file.txt:1 to see the contents


jazper

----- Original Message ----- 
From: "8tImER" <8tImER@....net>
To: <full-disclosure@...ts.netsys.com>
Sent: Sunday, October 19, 2003 7:48 PM
Subject: Re: [Full-Disclosure] Windows covert channel


> Hello James,
> 
> my guess is you are talking about 'streams' in NTFS.
> Example:
> Create a text file, save it.
> Then use 'echo "hidden text" >> file.txt:1' to add the hidden stuff.
> I don't remember how to read that stuff out afterwards though.
> 
> -- 
> Greetz,
>  8tImER                            mailto:8tImER@....net
>                                    GPG Key-ID: 0xADD46137
> 
> Originaltext:
> Am 20.10.2003 um 01:04:21 hast du geschrieben:
> 
> > I seem to remember in the dim reaches of my memory a covert channel in
> > the Windows file system where you could paste one file at the end of
> > another without it being detectible when you edited the orginal file.
> 
> 
> > can someone aim me at the right "buzz phrase" that describes this so I
> > can Google it further?
> 
> > jim k
> 
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html


Powered by blists - more mailing lists