RE: Looks like a Borderware firewall

From: Fernando Cardoso (fernando.cardosoat_private)
Date: Thu Aug 22 2002 - 02:32:27 PDT

Next message: Glenn Larsson: "Re: Pentesting a wireless Symbol Technologies barcode scanner system"

Previous message: Talisker: "Wireless Security Tools"
In reply to: The Blueberry: "Re: Looks like a Borderware firewall"
Next in thread: Alif The Terrible: "Re: Looks like a Borderware firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi again
>
>
> Hi all,
>
> In fact, connecting to https://the_device:442 yields an error
> message saying
> I must use the BWClient to connect to it with the big borderware
> logo on the
> top of the page... thank you all for your help.

You can grab BWClient from the Borderware website.

>
> >BTW, you did not say so but my guess is that the mailserver is
> an Outlook
> >Web
> >Access. Am I right? Unicode or ISAPI?
>
> Exchange 5.5/MSADC on a broken IIS on the same box.. lotsa things
> to write
> in my report! ;)

Been there recently. I had a costumer with a OWA server talking happily to a
PDC on the internal network. Guess who got domain admin privileges ;)

>
> But as we are on the subject, does anyone knows what is used as
> credentials
> for the Checkpoint? Are there default passwords? I did not found
> them in my
> default password lists...

It seems that the default password is "Firewall" with no username. This is
valid for the installation, but I guess when you configure it for remote
administration you have to assign admin users. I would try a combo of
admin/Firewall, root/Firewall, you_get_the_point/Firewall...

Cheers

Fernando

--
Fernando Cardoso - Security Consultant       WhatEverNet Computing, S.A.
Phone : +351 21 7994200                      Praca de Alvalade, 6 - Piso 6
Fax   : +351 21 7994242                      1700-036 Lisboa - Portugal
email : fernando.cardosoat_private     http://www.whatevernet.com/



_____________________________________________________________________
                      INTERNET MAIL FOOTER 
A presente mensagem pode conter informação considerada confidencial.
Se o receptor desta mensagem não for o destinatário indicado, fica
expressamente proibido de copiar ou endereçar a mensagem a terceiros.
Em tal situação, o receptor deverá destruir a presente mensagem e por
gentileza informar o emissor de tal facto.
---------------------------------------------------------------------
Privileged or confidential information may be contained in this
message. If you are not the addressee indicated in this message, you
may not copy or deliver this message to anyone. In such case, you
should destroy this message and kindly notify the sender by reply
email.
---------------------------------------------------------------------


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Next message: Glenn Larsson: "Re: Pentesting a wireless Symbol Technologies barcode scanner system"
Previous message: Talisker: "Wireless Security Tools"
In reply to: The Blueberry: "Re: Looks like a Borderware firewall"
Next in thread: Alif The Terrible: "Re: Looks like a Borderware firewall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Aug 26 2002 - 12:05:38 PDT