Re: Secure Win98 SE?

From: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] (sbradcpa_at_pacbell.net)
Date: 07/15/04 

Date: Wed, 14 Jul 2004 23:35:12 -0700

Oh I forgot remote desktop
Remote Web Workplace

Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] wrote:

> SALIVATING!!!!!!
>
> 1. When logging on ... hit cancel. You still can get into that
> workstation right? Got any sensitive documents on that machine?
>
> 2. Lanmanhash. 98 based machines require a lower authentication
> protocol to connect to a network. This lower authentication leaves
> behind a "hash" of the passwords on a place on the server. Take LC4 or
> John the Ripper program and run in on a network that runs 98's and it
> can break that hash... less than 7 character password that is a
> dictionary word gets broken my lc4 faster than I can find the icon on
> the desktop.
>
> 3. User mode. XP/2k have three levels of security. User mode, Power
> users mode, Local administrator. 98s has one level. Local admin. That
> means that your employees can load on that machine ANYTHING they want.
>
> 4. Going to Windows 2000/XP is considered by my friends who work in the
> defense contractor industry to be a downgrade. Why? Because of 3 above.
>
> 5. Services running as different levels. Even in windows 2000 versus
> 2003 you can see the impact of security.. many of the patches released
> today didn't affect Windows 2003, or there is mitigating factors.
>
> 6. Hold onto your hats because right around the corner and within 90
> days in the OEM channel XP sp2 will be released in August. XP sp2 is
> very solid. All of the recent attacks affecting IE ... are all fully
> protected in XP sp2. It's almost like a new OS, it's that good.
>
> 7. Group policy. Oh man this is where is really gets good. You want
> to control the interior firewall on the XP sp2 machines INSIDE your
> network, well get ready to. SBS2003 will be getting an update to our
> Group policy to adjust so that the firewall is on inside our networks
> better protecting us.
>
> 8. Group policy. If you have 98's you have no idea of the power you
> can from that server. From locking down the screen saver to controlling
> what programs are loaded, one of the advantage we SBSers have is we are
> already on Active Directory.
>
> 9. 98's have no security. That's an oxymoron. It doesn't exist.
>
> 10. No blue screens of death. I honestly have never had one, don't
> know what they look like on XP
>
> 11. System restore, load a driver that would normally BSOD a 98, and
> you can easily recover on XP
>
> 12. SUS or Shavlik. You can't do a Patch management program on a 98.
> You need XP....
>
> How many more do you want?
>
> C S R C - Systems Administration:
> http://csrc.nist.gov/itsec/guidance_WinXP.html
>
> See that? You can't do anything like that on 98s.
>
>
>
> Roger wrote:
>
>> I've read that WIN98 SE systems can't be locked down and aren't
>> secure. Comparitively speaking...
>>
>> I want to convince a client of mine of this... but I'm looking for
>> some guidance on some specific reasons why they need to fork out a
>> little cash to upgrade to Win XP Pro...
>>
>> The stand-by "It's not supported anymore" isn't working with them...
>>
>> So... what are the security risks staying with an out-
>> dated legacy system running Win98 SE?
>>
>> Regards...
>> -R.
>
> 

-- 
http://www.sbslinks.com/really.htm

Relevant Pages

  • Re: Using Remote Desktop From an SBS Domain
    ... After I thought about needing 3389 forwarded on my router to allow me to ... Remote Desktop "out" from a workstation on my SBS network to a host XP ... Hopefully next week I can attempt a connection while my ISP watches the ...
    (microsoft.public.windows.server.sbs)
  • Re: Cant locate my computer via IP address and ping
    ... Is it possible your home PC that is connected via DSL is also behind a firewall/NAT/router? ... On your home PC, the one you want to Remote Desktop into, run the ipconfig command from the ... > dedicated DSL connections. ... I can use remote desktop just fine on my MS Workgroup network... ...
    (microsoft.public.windowsxp.network_web)
  • Re: Hard Drive is making horrible noises, please help with Logging errors.
    ... NetMeeting Remote Desktop Sharing ... Network Location Awareness (NLA) ... NT LM Security Support Provider ... Remote Desktop Help Session Manager ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Remote desktop, two network ports on computer
    ... One is on our local network 10.10.10.154(static ip with a 255.255.255.0 ... The other is connected to a hardware controller for some equipment ... When I unplug my hardware controllers network cable, I can remote desktop ... remote desktop connection and I can't reconnect. ...
    (microsoft.public.windows.vista.networking_sharing)
  • Remote install of applications
    ... >How can I install new software on users workstations ... >a central location over a network. ... >software on 18 workstations from a single workstation ... Remote Desktop overviewWith Remote Desktop on Windows XP ...
    (microsoft.public.win2000.applications)