Re: RWW Security was compromised.

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: Gary V. (GaryV_at_discussions.microsoft.com)
Date: 01/25/05 

Date: Mon, 24 Jan 2005 21:57:05 -0800

So now that the fear of God is instilled in us all about our passwords, what
is one to do? I have a horrible memory. I can’t remember a 14+ password, much
less a new one over month to 90 days. Are smart cards a better idea? Yes they
cost money but are the other login solutions better then long passwords? I.e.
Fingerprints, smartcards? Thanks.

...The Re. is for all and not just pointed at Susan

"Susan Bradley, CPA aka Ebitz - SBS Rocks" wrote:

> BTW 7 characters on a Admin password doesn't even break the lanman hash
> on the dang thing.. make it longer than 14.
>
> Larry K wrote:
> > One of our clients RWW was compromised over the weekend. Apparently they(the
> > hack) setup a script to crack the password on the username: adminitrator and
> > password. How do I know? I don't. What I do know is that there were around
> > 580 attempts to login as administrator via RWW and one worked! So the
> > password wasn't so good. It had 7 characters and numbers uppercase and
> > lower. They accessed an application server and logged into 4 other accounts.
> > I'm at a loss with this one. RWW doesn't lock anyone out after failed
> > attempts. Is there a way to lock down RWW?
> >
> > Larry K
> >
> >
>
> --
> An open letter to the Security Community::
> http://msmvps.com/bradley/archive/2004/12/12/23540.aspx
>

Relevant Pages

  • Re: SBS RWW, Exchange and a vpn
    ... I understand your concern but if you have implemented strong passwords, ... Hence the thought of a VPN that wont be so exposed, as RWW is. ... via RWW Web based Outlook in Exchange. ...
    (microsoft.public.windows.server.sbs)
  • Re: Ports still open even with ISA 2004
    ... had a horrible experience a few years ago with exchange 2000 and POP3 ... Passwords need tightening up though for RWW, ... Why VPN, well habit I suppose, always had it with SBS2000 but if I log on as administrator in RWW I get offered access to the server so it would make sense to close up 1723. ... else's web server, but I wouldn't run it myself, nor use it to transport ...
    (microsoft.public.windows.server.sbs)
  • strong passwords for certain groups
    ... I'm deploying OWA and RWW, so I want Remote Users to use strong passwords. ... But I also got logins and users who I don't want to burden with this, ...
    (microsoft.public.windows.group_policy)
  • Re: cant connect to clients internally
    ... Most of the client passwords use $ for S ... > From an internal client IMHO you can NOT use the RDP-Proxy Feature of RWW, ... > For internal use there is the RDP-Client or the Remote Assistance Feature ...
    (microsoft.public.windows.server.sbs)
  • RE: [fw-wiz] Stanford break in
    ... If you asked the physical security about their policy with respect to ... the test of tome and should be appropriate for passwords. ... Most companies do not change the keys on a time basis but on a user basis. ... the lock is changed. ...
    (Firewall-Wizards)