Cable Forum - View Single Post

qasdfdsaq · 21-11-2014, 02:46

Yes, we have change management and tons of over the top RFC processes though none of my servers have to deal with them (nor are any of them running Windows).

However both here and at many other HEIs there are domain controllers operating AD accounts for many thousands of uncontrolled users, including public and guest accounts. This'll be very fun for them to deal with - given there'll be a distribution of tens of thousands of student accounts and any staff member has the ability to auto-create guest accounts for anyone who walks off the street without requiring approval. Public libraries and the like will likewise be highly vulnerable.

Makes that other incident at an institution-who-shall-not-be-named that recently found some hardware keyloggers plugged into the back of their corporate machines seem pretty tame in comparison.

21-11-2014, 02:46	#16
qasdfdsaq cf.mega poster Join Date: Aug 2004 Posts: 11,207	Re: Patch all those windows boxes Yes, we have change management and tons of over the top RFC processes though none of my servers have to deal with them (nor are any of them running Windows). However both here and at many other HEIs there are domain controllers operating AD accounts for many thousands of uncontrolled users, including public and guest accounts. This'll be very fun for them to deal with - given there'll be a distribution of tens of thousands of student accounts and any staff member has the ability to auto-create guest accounts for anyone who walks off the street without requiring approval. Public libraries and the like will likewise be highly vulnerable. Makes that other incident at an institution-who-shall-not-be-named that recently found some hardware keyloggers plugged into the back of their corporate machines seem pretty tame in comparison.