Author: Jiujian Source: Computer News
When many friends use the input method vulnerability to intrude other people's servers through port 3389, they will find that after connecting to the other party's machine, they cannot pass files between them like intranet computers. This greatly reduces the attack after the intrusion. In fact, using Microsoft's own "patch" can solve this problem.
Here, the author will introduce to you the configuration methods of the server and client, so that everyone can realize the file transfer between the terminal machine and the local machine through the 3389 terminal service.
Server side (attacked party)
First, download the patch package at /520yy/cpcw/, which contains three files (all of which can be found in Microsoft's rdpclip_hotfix).
Then, place the file in the "\winnt\system32\" directory (Windows 2000 Server system), and create a directory called "rdpclip" in "\winnt\system32\" and store the file in this directory. Open the Registry Editor and find
"HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd", change the "rdpclip" value of "StartupPrograms" to "rdpclip\". In this way, the server-side settings are done.
Client (attacking party)
The client is relatively simple to set up. Copying the two files "" and "" to the client (Windows 2000 Server system) under the "\program files\Terminal Services Client" directory, the client configuration operation is completed.
It should be noted that during the client configuration process, the system will prompt whether to overwrite the original old version of the file (the two files already exist in the Windows 2000 Server system with terminal services installed). We just need to click "Yes" and replace it. At the same time, we cannot use terminal services during the replacement process, otherwise the overwrite operation will fail.
Now, we can use the client to connect to the server, just like sharing computers on the network, which can easily and quickly perform copying and pasting files. For intruders, there is no need to obtain the documents on the broiler through other channels. At this time, the broiler in your hand can be slaughtered.