Installation, configuration, and management of software are large part of most system administrator’s jobs. Admin respond to installation and configuration requests from users, apply updates to fix security problems, and supervise transitions to new software releases that may offer both new features and incompatibilities.
Microsoft Windows users may take a look at a tool called RemoteExec. This tool allows administrators to run programs remotely , deploy applications and update computers in Windows network. RemoteExec is based on an agentless and non-intrusive technology and only requires ICMP (ping) and Microsoft File and Printer Sharing (SMB TCP 445) to perform all required action on the network.
By defining Action you can easily deploy the most common Microsoft updates , specifying the path to the package or install program. RemoteExec will then try to find out the type of update and automatically configures the arguments to launch the installation on silent mode.
On the remote system you can perform seven actions including Shutdown,Reboot,Logoff session, Lock session, Wake up(allows you to wake up remote computers using the Wake-On-Lan technology By default the Wake-On-Lan is disabled in the BIOS of each computer you can activate it) …
Using this predefined Action you will be able to deploy a file or the content of a whole folder on many computers. You will also be able to delete a specified file or folder on Target Computers.
On the client side you can display a popup message that you want to transmit to users on real-time.
Now form the security prospective an MITM attack against RemoteExec 5.0 is nearly impossible to perform as when it executes a remote job, RemoteExec :
- creates a server on the source system and a client on the target system,
- initializes an asymmetric encryption, so the server and the client can safely exchange the key,
- allows an encrypted dialog between the server and the client
- finally terminates the server and the client.
make sure you subscribe to my RSS feed!