| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <C5A2E1DE24DB9B46AF3BE1530D5F960993F0@webserver.iridium-satellitephones.com> From: nick at ethicsdesign.com (Nick Jacobsen) Subject: A FreeBSD server that is converted in a MS 2003 Server... and viceversa Well, first off, I am guessing you are trying to access the machine without the owners permission - and FD does *NOT* support, endorse, or condone unauthorized "hacking"... But, as for an answer to your question, there are two possible answers that pop to mind... 1) the IP address you are hitting is actually some sort of load balancing server, and so while one request might go to the BSD machine, another request might go to the win2k3 machine... 2) or, more likely, it is a win2k3 box running some form of VirtualPC or VMWare with FreeBSD as the client OS (or vice versa)... just an idea, but... this is a lot like what I would do if I wanted to set up a honeypot *grin*. Ethics -----Original Message----- From: DrD Sent: Tue 5/4/2004 7:05 AM To: full-disclosure@...ts.netsys.com Cc: Subject: [Full-Disclosure] A FreeBSD server that is converted in a MS 2003 Server... and viceversa Hi all... I have a problem that I can't understand... lets see if you guys can help me with it. I have access to a FreeBSD server, I accessed and look a little. The problem is when sometimes I have not access anymore, and its because the server is not a FreeBSD, is a MS 2003 Server... :( I mean, the server looks not to be the same, and the user/pass that I got before, dont work anymore. And then nmap tells that is a FreeBSD server, and I can access like before. But then I can't access, and nmap tells that is a MS 2003 Server. This server is aparently a hosting server, I saw many webpages in there... and I supose it has static IP. But this problem happening many times already. Anyone can tell me why is happening that? is this a extrange technique of security? I mean... is more easy patch the server, is full of holes... :) Anyway... sorry but my english is very bad. Thanks a lot. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/ms-tnef Size: 5814 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040504/f1d919d6/attachment.bin
Powered by blists - more mailing lists