How do they do it?

• Administrative passwords captured by a password sniffer.

• Utilize known vulnerability:

  • sendmail bug.
  • Buffer overflow.

• Use web server CGI script to steal /etc/passwd file, then crack passwords.

• Mount the web server’s filesystem.

Previous slide

Next slide

Back to first slide

View graphic version