Can viruses be planted on a server?

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Could a disgrunted former IT person who had access to a Win2k server via RDP
intentionally plant viruses on the server?  If so, would there be a way to
trace the evidence?

thank you,

jm






Re: Can viruses be planted on a server?

Yes.

--


The best live web video on the internet http://www.seedsv.com/webdemo.htm
NEW Embedded system  W/Linux. We now sell DVR cards.
See it all at http://www.seedsv.com/products.htm
Sharpvision simply the best http://www.seedsv.com



Quoted text here. Click to load it



Re: Can viruses be planted on a server?

Thank you for your response.

Would that be "yes" to both questions.  And, if so, what measures might be
taken to trace the evidence?

thank you,

jm





Quoted text here. Click to load it



Re: Can viruses be planted on a server?

That's yes to both. Security logs can be used to track them along with the
file creation date and network traffic logs.

--


The best live web video on the internet http://www.seedsv.com/webdemo.htm
NEW Embedded system  W/Linux. We now sell DVR cards.
See it all at http://www.seedsv.com/products.htm
Sharpvision simply the best http://www.seedsv.com



Quoted text here. Click to load it



Re: Can viruses be planted on a server?

On that special day, JM, (jm@yahoo.com) said...

Quoted text here. Click to load it

If the server hasn't been patched properly, and you didn't remove his
account properly, yes. There's lots of information on the net, how to
escalate privileges and similar things.

I had a look at Google which tindicates that the RDP itself doesn't
allow for changing user rights, but if the tech could do *anything*
that creates files on the server, it might open a barn door for him.

Proving the maclicious action will be not that easy, if (s)he had
access to the logfiles and could modify them. Also, you should bear in
mind that there are viruses (or rather worms) that make their way in by
abusing weak services, that answer to unauthorized and malformed
requests; so this could be just a coincidence.
 

Gabriele Neukam

Gabriele.Spamfighter.Neukam@t-online.de


--
Ah, Information. A property, too valuable these days, to give it away,
just so, at no cost.

Site Timeline