Jeff Dunlop wrote in a message to Tony White:
 TW>> I'm of the opinion that it can be done, too --
 SD>> Your hopeing so ?
 TW> Yes and no.  Yes because it would be good to wipe the smirk off of the
 TW> face of the supercilious jerk that runs the servers who says it can't be
 TW> done, no way, no how -- and no, because in all the time I've worked with
 TW> NetWare, I've never seen any app or series of commands (or anything else
 TW> for that matter) that would bring down any server, any time.
 JD> Tony, I haven't seen it happen since the 2.x days. A concerted
 JD> effort from a large number of machines could exhaust Netware
 JD> resources, for instance locks. If you have access to the System
 JD> directory and care to remove some choice Files, the server might
 JD> not be able to reboot.
I've seen it happen as recently as 3.11.  
 JD> I've heard that a large number of findfirst calls without searching
 JD> to the end of the directory can be a problem, but I can't verify
 JD> this with a test program. Perhaps this reported problem is due to
 JD> the maximum NCP searches that a single workstation can have open
 JD> (which I _can_ duplicate by running 60 processes under OS/2), but
 JD> that just exhausts resources to the rogue machine. 
 JD> If you take a moment to assume there are security holes, typically
 JD> you see in the trade press an announcement by some lab that
 JD> particular security features of a NOS can be exploited. This is
 JD> usually followed immediately by the announcement that the fixes for
 JD> the hole in question can be downloaded over the Internet. Microsoft
 JD> NT and W95 are continually having their security breached, with
 JD> patch upon patch being provided. I've _never_ seen Netware or Warp
 JD> Server receive this kind of press.
Neither have I, but I don't have a lot of time for light reading these 
ys...
Speaking of NT security, have you heard about the utility that's floating 
around the Internet that will allow you to interpret an NTFS partition in 
read-only mode from a FAT partition?  You can stick a boot floppy in an NT 
machine and reboot it to this floppy and mount and read the NTFS drive, and 
it has no regard for security.  Now _that's_ scary.
 JD> The only reliable way I know of to crash a server is to have remote
 JD> access to a buggy 3rd party NLM running on the server (like
 JD> Arcserve, Backup Exec, F-Prot, etc) and to know how to crash it,
 JD> which I can do almost without trying. 
You said the A-word already, so I know you know what you're talking about... 
:-)
Regards,
-TWhite 
--- timEd 1.10
---------------