|
Title: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: rasengan on March 14, 2012, 02:34:28 AM Summary: There’s a remote, pre-authentication, network-accessible code execution vulnerability in Microsoft’s implementation of the RDP protocol.
http://www.zdnet.com/blog/security/microsoft-warns-expect-exploits-for-critical-windows-worm-hole/10745 tl;dr: Go update/patch or risk your wallet.dat. Title: Re: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: ArticMine on March 14, 2012, 02:51:30 AM Summary: There’s a remote, pre-authentication, network-accessible code execution vulnerability in Microsoft’s implementation of the RDP protocol. http://www.zdnet.com/blog/security/microsoft-warns-expect-exploits-for-critical-windows-worm-hole/10745 tl;dr: Go update/patch or risk your wallet.dat. Thanks for the warning; however I have avoided Microsoft Windows for years for anything financial long before hearing of Bitcoin for safety and security reasons. That means using GNU / Linux for running Bitcoin software or any form of online banking. Title: Re: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: Graet on March 14, 2012, 03:05:06 AM Summary: There’s a remote, pre-authentication, network-accessible code execution vulnerability in Microsoft’s implementation of the RDP protocol. http://www.zdnet.com/blog/security/microsoft-warns-expect-exploits-for-critical-windows-worm-hole/10745 tl;dr: Go update/patch or risk your wallet.dat. Thanks for the warning; however I have avoided Microsoft Windows for years for anything financial long before hearing of Bitcoin for safety and security reasons. That means using GNU / Linux for running Bitcoin software or any form of online banking. Thanks for the heads up rasengan . I'm not a fanboi and use both linux and windows, whats the point of your post ArticMine plenty of coins have been stolen from computers running linux.... Security is important no matter the os.... Title: Re: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: BinaryMage on March 14, 2012, 03:32:39 AM A lot of unwarranted concern here IMO. This is only an issue if you enable Remote Desktop, which is already known to be ridiculously insecure. It's disabled by default, so don't worry, if you've never used it you're not at risk.
Title: Re: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: rjk on March 14, 2012, 02:40:13 PM A lot of unwarranted concern here IMO. This is only an issue if you enable Remote Desktop, which is already known to be ridiculously insecure. It's disabled by default, so don't worry, if you've never used it you're not at risk. Cite? Have a good long password, and SSL with a proper certificate from a CA, and login rights only for users other than Administrator, and it works fine. The vuln above is something to worry about, but an exploit has not yet been developed and a patch is already available.Sure, it doesn't offer certificate based auth like SSH does, but you can use smart cards if you aren't good at making a secure password. Add a VPN on top if you are really paranoid, and change the port for good measure. Title: Re: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: rjk on March 14, 2012, 04:13:41 PM an exploit has not yet been developed and a patch is already available. No exploit... that you know of. The bug has been there for probably a decade. It's not bug appears, bug patched - where your vulnerability is the time between discovery and patch. It's bug exists for _years_, bug discovered publicly, bug patched. What demons lurk behide the wall? We couldn't see. Title: Re: [Advisory] Microsoft warns: Expect exploits for critical Windows worm hole Post by: BinaryMage on March 15, 2012, 12:22:21 AM A lot of unwarranted concern here IMO. This is only an issue if you enable Remote Desktop, which is already known to be ridiculously insecure. It's disabled by default, so don't worry, if you've never used it you're not at risk. Cite? Have a good long password, and SSL with a proper certificate from a CA, and login rights only for users other than Administrator, and it works fine. The vuln above is something to worry about, but an exploit has not yet been developed and a patch is already available.Sure, it doesn't offer certificate based auth like SSH does, but you can use smart cards if you aren't good at making a secure password. Add a VPN on top if you are really paranoid, and change the port for good measure. I don't personally know of any specific exploits other than as long as the user does all that you mention, but the fact that it's closed-source increases the likelihood by quite a bit, and I generally would avoid trusting for-profit closed-source programs on general principle. Your point is fair, though. My sentence was rather misleading, in and of that RDP isn't, except for this exploit and being closed-source, necessarily less secure that other protocols. I stand corrected. I'm just a little skeptical of the doomsayers. ;) |