Mon, Mar 28 2005 22:55
Sniffin' a bit of a password tonight
Russ in the newsgroup picked up a new SBS client and they didn't write down the POP connector password. He asked “Anyone know of password programs that unhide password in 2003? All I can find are the ones for XP?”
As Russ found out it wasn't even that hard. Load up a little Ethereal program, sniff the tcp/ip packets and that password will travel from the server to the pop box at the ISP in clear text. You see a 'elho' command and then the lovely phrase 'password' and it's pretty obvious what the password is.
Remember, physical access means the ultimate lack of security. With physical access I can even reset the local admin password [only do this on desktops, not on the server]
Law #3: If a bad guy has unrestricted physical access to your computer, it's not your computer anymore
Filed under: Security