Discussion
Tivster said:
our sytems at work utilise log on profiles under Windows NT4. If yer machine is left logged on and someone opens an IE window that is held in cache then whatever logon/account details had been previously entered remain and are still effectively active.
First rule of IT security and general good working practice:
Log off or lock your workstation whenever you leave your desk. I would have thought that the Police would have been fairly hot on that sort of thing...BS7799 anyone!!
gemini said:
Hi Jamer
In a bid to iuncrease my revenue (fancy coloured griff needed)
I have set up cameras on the route to Staindrop
Until you spoilt my little plan I had hoped that the number of prosecutions would pay for a little 5 ltr in paradise purple or similar
Looks like its staying skoda favorite for now!
PS no spedd cameras in NY
we do have anpr though
Ricahrd
Can you make it on the Notts night out with your cronies? It would be nice to see you again - I will try to get you a selection of ladies for the event ;-)
I will get some revolving number plates ordered on a 5000cc Purple Paradise Chimaera for you!
>> Edited by jamer on Wednesday 30th July 10:12
tuffer said:
our sytems at work utilise log on profiles under Windows NT4. If yer machine is left logged on and someone opens an IE window that is held in cache then whatever logon/account details had been previously entered remain and are still effectively active.
First rule of IT security and general good working practice:
Log off or lock your workstation whenever you leave your desk. I would have thought that the Police would have been fairly hot on that sort of thing...BS7799 anyone!!
Tuffer, you are right of course. In general logged on workstations are locked before the user leaves them, if they are not shut down.
But it's not so simple. It appears that all workstations within the same node(?) of the network i.e. are in close proximity to each other share a network cache. Now I'm getting out my depth here a bit, but I think this may be due to the fact that at startup/logon all machine boot from the network, where common network drives supply Windows config info such as templates etc. Individual logons give you localised and personal settings.
Ok - I've tried to get an explanation for this from our IT guys, but can't. User 1 logged on to Internet via our gateway. User 2 sitting at next workstation logs on to Internet via the gateway. User 1 access a secure page on a store website (logged into the store account, makes a purchase and is looking at the invoice for the purchase still within https. User 2 now navigates to the same store website. Clicks on Your Account, doesn't enter any details and immediately has access to the HTTPS page that User 1 is viewing......
To all intents and purposes this is how the Tivster/**999** pullava was detected. Albeit the IP tracing only shows 1 source, in reality several workstations were involved...
Tivster
Gassing Station | Tamora, T350 & Sagaris | Top of Page | What's New | My Stuff