Security Basics mailing list archives
Re: DHL connect software
From: Tremaine Lea <security-basics () ddiction com>
Date: Tue, 27 Mar 2007 16:38:28 -0600
Ethereal/wireshark on the host running the software and capture all traffic. The port 80 and 20/21 traffic is likely all clear text. The port 442 traffic is *likely* encrypted.
--- Tremaine Lea Network Security Consultant Be in pursuit of equality, but not at the expense of excellence. On 26-Mar-07, at 9:43 PM, Murda Mcloud wrote:
Hi all,Has anyone had to install this software for their mailroom department? DHL Connect-it allows staff to do their consignments up etc before sending thepackages through DHL.I have found out that it uses 443 and 80 for the connection to DHL and forupdates it requires 20/21 (all outbound). It also seems to require admin privs on the local box-and needs shareddrives if others on the LAN are to print reports from the dbase that getscreated on the workstation.I am going to run filemon/regmon to see what kind of things it does in terms of files and keys. Does anyone else have suggestions for what other info togather to test its 'secureness'? There doesn't to seem to be too much by way of documentation.
Current thread:
- DHL connect software Murda Mcloud (Mar 27)
- Re: DHL connect software Tremaine Lea (Mar 27)
- Re: DHL connect software Ansgar -59cobalt- Wiechers (Mar 27)
- RE: DHL connect software J.M. Seitz (Mar 27)
- Re: DHL connect software Dan Tesch (Mar 28)