Symantec tells customers to disable pcAnywhere software

f1assistance · 01-25-2012, 10:38 AM

"Symantec Corp advised customers to stop using its pcAnywhere software for accessing remote PCs, saying they are at increased risk of getting hacked because the blueprints to that software have been stolen."

http://preview.tinyurl.com/7th6suv

dmorris · 01-25-2012, 10:39 AM

the "blueprints"

sky-knight · 01-25-2012, 10:56 AM

With RDP, VNC, GotomyPC, and Logmein out there...

People still use pcAnywhere?!?

jcoehoorn · 01-25-2012, 01:19 PM

When our college migrated this year to a new campus-wide software solution (registration, student billing, transcripts, payroll, donations, general ledger, etc), the vendor wanted us to install pcanywhere on the 2 new server machines for their remote staff to use to set things up. I refused and gave them remote desktop access instead.

RBoynton · 01-25-2012, 01:31 PM

PCAnywhere had its place a long time ago. It was always dog slow, and pricey for what it delivered. If anyone is still using it, they need to get up on what is current. I used to play with tin can telephones, but found there were things that worked much better!

M.I.B. · 01-25-2012, 03:41 PM

PCAnywhere?

Back in last century yes it was a good solution.
Today you use TeamViewer, NetViewer, VPN + RDP and so on.

MIB

f1assistance · 01-26-2012, 04:39 AM

I know of many SMB's currently only using RDP which we know is a security issue due to open port(s) and forward(s)...some suggest using an obscure port apart from 3389, but as we know were talking about a limited pool and an open port is an open port.
Anyway, obscure in 65k, that's sadly funny!

dbunyard · 01-26-2012, 05:02 AM

Quote:

Originally Posted by f1assistance

I know of many SMB's currently only using RDP which we know is a security issue due to open port(s) and forward(s)...some suggest using an obscure port apart from 3389, but as we know were talking about a limited pool and an open port is an open port.
Anyway, obscure in 65k, that's sadly funny!

We use RDS for our after-hours call center to access our terminal server. It is on an "obscure" port

but apart from that it's restricted to 2 of their live IP addresses so nobody else can get to it. If you do a port scan from anywhere else that port shows as closed.

jcoehoorn · 01-26-2012, 06:33 AM

What really sad here is that this is a company that's responsible for the security software that protects a very large percentage of world's PCs. For them to think available source == insecure is just wrong and sad.

A much better response would have been to release the source code publicly and turn the dying (and now dead, thanks to this move) product into an open source project that might have a chance to even thrive.

TirsoJRP · 01-26-2012, 09:45 AM

Quote:

Originally Posted by jcoehoorn

When our college migrated this year to a new campus-wide software solution (registration, student billing, transcripts, payroll, donations, general ledger, etc), the vendor wanted us to install pcanywhere on the 2 new server machines for their remote staff to use to set things up. I refused and gave them remote desktop access instead.

Sounds like Jenzabar.

01-25-2012, 10:38 AM	#1 (permalink)
f1assistance Master Untangler Join Date: Apr 2009 Location: Holly Springs, NC URLs submitted: 154 Posts: 218	Symantec tells customers to disable pcAnywhere software "Symantec Corp advised customers to stop using its pcAnywhere software for accessing remote PCs, saying they are at increased risk of getting hacked because the blueprints to that software have been stolen." http://preview.tinyurl.com/7th6suv __________________ Untangle...because nothing is worse than doing nothing! ------- 2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

01-25-2012, 10:39 AM	#2 (permalink)
dmorris Untangle Junkie Join Date: Nov 2006 Location: San Mateo, CA URLs submitted: 10 Posts: 10,613	the "blueprints" __________________ Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself. If you need Untangle support please call or email support@untangle.com

01-25-2012, 10:56 AM	#3 (permalink)
sky-knight Join Date: Apr 2008 Location: Phoenix, AZ URLs submitted: 8 Posts: 15,460	With RDP, VNC, GotomyPC, and Logmein out there... People still use pcAnywhere?!? __________________ Rob Sandling, BS:SWE, MCP Intouch Technology Phone: 480-272-9889 rob@intouchtechllc.com UntangleAppliances.com Phone: 866-794-8879

01-25-2012, 01:19 PM	#4 (permalink)
jcoehoorn Master Untangler Join Date: Mar 2010 Location: York, NE Posts: 475	When our college migrated this year to a new campus-wide software solution (registration, student billing, transcripts, payroll, donations, general ledger, etc), the vendor wanted us to install pcanywhere on the 2 new server machines for their remote staff to use to set things up. I refused and gave them remote desktop access instead. __________________ Three time Microsoft ASP.Net MVP managing an IBM System x3250 / X3440 / 8GB with Untangle 9.2 to protect 40Mbits for 450+ residential college students and associated staff and faculty

01-25-2012, 01:31 PM	#5 (permalink)
RBoynton Untangler Join Date: Dec 2010 Location: Boerne, TX Posts: 83	PCAnywhere had its place a long time ago. It was always dog slow, and pricey for what it delivered. If anyone is still using it, they need to get up on what is current. I used to play with tin can telephones, but found there were things that worked much better! __________________ ...Rick

Protect

Filter

Perform

Connect

Manage

Add-Ons

01-25-2012, 03:41 PM	#6 (permalink)
M.I.B. Master Untangler Join Date: Jul 2010 Location: Austria Posts: 132	PCAnywhere? Back in last century yes it was a good solution. Today you use TeamViewer, NetViewer, VPN + RDP and so on. MIB

01-26-2012, 04:39 AM	#7 (permalink)
f1assistance Master Untangler Join Date: Apr 2009 Location: Holly Springs, NC URLs submitted: 154 Posts: 218	I know of many SMB's currently only using RDP which we know is a security issue due to open port(s) and forward(s)...some suggest using an obscure port apart from 3389, but as we know were talking about a limited pool and an open port is an open port. Anyway, obscure in 65k, that's sadly funny! __________________ Untangle...because nothing is worse than doing nothing! ------- 2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

01-26-2012, 06:33 AM	#9 (permalink)
jcoehoorn Master Untangler Join Date: Mar 2010 Location: York, NE Posts: 475	What really sad here is that this is a company that's responsible for the security software that protects a very large percentage of world's PCs. For them to think available source == insecure is just wrong and sad. A much better response would have been to release the source code publicly and turn the dying (and now dead, thanks to this move) product into an open source project that might have a chance to even thrive. __________________ Three time Microsoft ASP.Net MVP managing an IBM System x3250 / X3440 / 8GB with Untangle 9.2 to protect 40Mbits for 450+ residential college students and associated staff and faculty