Data Doctors
Recycle your Computers & Technology with us.

Potential vulnerability alert for NT servers running IIS!

Posted By : of Data Doctors on December 1, 2000

Follow us on Facebook   Follow us on Twitter   Follow us on LinkedIn

Let Data Doctors be your personal IT department today

Book an Appointment

Potential vulnerability alert for NT servers running IIS!

This question was answered on December 1, 2000. Much of the information contained herein may have changed since posting.

I've run into several customers who's NT machines have been used as anonymous FTP servers allowing anyone on the internet to download pirated software from their machines without their knowlege Once someone has put those files on such a machine, he/she advertises this fact to 500 of their closest friends and voila, your connection to the internet is completely clogged by these requests If you meet the following criteria, you might be next !

1 You have a dedicated, high speed connection to the internet via leased line (Frame-Relay, etc), DSL or cable modem.

2 You have IIS installed and it allows anonymous FTP access (which is the default setting!).

3 Your file permissions are such that anonymous FTP users can create and write files on your hard drive Simply put, anyone can put anything they want on your system.

The one common denominator in this sort of compromise is the existance of a file called 1MB or 1mb which is exactly 1000000 bytes This apparently is installed to determine whether or not your connection is fast enough to make you a suitable victim.

The bottom line is, don't allow anonymous FTP on IIS servers!

Lee Burton

Extreme Internet

<a href="http://www.extremezone.com"><font color="#003399">www.extremezone.com</font></a>

About the author

Posted by of Data Doctors on December 1, 2000

Need Help with this Issue?

We help people with technology! It's what we do.
Contact or Schedule an Appointment with a location for help!

Free Help

Articles & Advice

Video News

Newsletter

Approved Software

Ask a Question
Call the Repair Hotline at

855-328-2362

Newsletter

Sign up for our newsletter and get free tips and tricks to keep your computer running great!

Start by entering your
Videos In the Press
Videos In the Press
Radio Tech Tips
Radio Tech Tips

For non-tech people, find tips from us on a station nearby!

Categories
Internet Tips & Tricks Windows 2000 Windows NT

Data Doctors
Newsletter

Subscribe Today

Customer Support Customer Support

Our customers are the most important part of our business and we empower our friendly, trained staff to spoil you. In addition, we have a dedicated Customer Support team standing by to help when needed.

If you're not satisfied, we're not done! We guarantee satisfaction.

365 Day Warranty 365 Day Warranty

We provide a 1 year warranty on new parts and computers we sell. We'll quickly diagnose and replace defective parts used during the original repair. Please keep in mind that this warranty does not cover damage you cause (such as broken screens) or water damage done to your device after the initial repair. Refurbished parts generally carry a 90 day warranty.

Satisfaction Guarantee Satisfaction Guarantee

We've been helping people with technology for nearly 30 years. We were fixing computers when break dancing was cool! We spend time with you at check-out to make sure it's exactly the way you want. Data Doctors sets the gold standard when it comes to customer satisfaction. That's why we've received more awards for customer service and satisfaction than anyone else in the business.

Book Appointment