Spacer Sidebar Directory Map

The Training Book, the handbook for trainers

Training Express computer learning guides

 

ITrain - International Association of Information Technology Trainers McAfee Detects Back Orifice 2000
Network administrators breath a sigh of relief

ITINFO Sponsor

Marketing On Chump Change

Isn't that music to your ears?
Why do most marketing programs cost an arm and a leg?
Quit throwing your hard earned money down a rat hole!

With FastTips Newsletters your clients rave about how smart you are for giving them so much free information.
Oh, and by the way, it won't cost you a fortune.

Click to Stop Wasting Money

Internet Poll
Have you attended a seminar via e-learning?
yes
no

poll archive

Linux Powers Sub-$200 Internet Appliance
by Dave Murphy
ISSN 1535-3613

Dave Murphy, DGL President & ITrain founder Back Orifice 2000 (BO2K), released at DefCon by the Cult of the Dead Cow hacker group, has network administrators scrambling to beef up their network security because once installed on a PC, BO2K grants full access to that network workstation: anything that could have been done at the PC's keyboard can be done remotely by either the network administrator or worse, a system cracker.

BO2K can infect Windows 95/98 workstations as well as Windows NT workstations and servers. It can be delivered as an executable file via an email attachment and gets promulgated much like email-borne PC trojan horses (similar to computer viruses).

The McAfee site includes the following description of BO2K:

The BO2K virus consists of two components - a server program and a client program. It copies itself to the local disk under the name "exe" and installs a reference to that file in the registry. It runs every time the machine restarts. The program hides itself - it is not visible as a task although it is running permanently in the background of your PC. BO2K awaits commands from the client through the network. After the server program is installed on a computer, the person controlling the client has remote control over the machine running the server program. This requires both machines to be connected to the Internet. This control includes recording the keystrokes pressed, restarting or hanging the machine, running, accessing, modifying and transferring files. It can also transmit screenshots. The software also has a program to reconfigure the server application. Filename, TCP/IP port, registry key, password for client-server data exchange and additional DLL can be configured.

To give you a hint about how wide spread the interest in BO2K is, the single article I wrote and posted online has been the most requested page on our sites since June 30th.

What do you think? Are you interested in BO2K? Why? Leave your comments on the message center.

McAfee
Message Center

Subscribe to ITINFO.
Receive computing and Internet news & tips
by subscribing to the ITINFO information service.
Type your Internet email address in the form, and click "Subscribe."
Email Address:

Damar Group, Ltd. helps business use technology.

ITINFO is again accepting sponsors. Sponsor messages are included in ITINFO's email newsletter and are permanently posted to DGL's website and online reference areas.

ITINFO is an electronic publication of Damar Group, Ltd., publisher of Training Express computer learning guides. Comments and submissions to info@dgl.com.

Previous issues are on our website at http://dgl.com/itinfo/.

updated July 21, 1999
http://dgl.com/itinfo/1999/it990721.html

Return to DGL homepage
Copyright © 1999, Damar Group, Ltd., All Rights Reserved