What is the rumored “backdoor” in NDS?
The rumored backdoor in NDS exists – to an extent. The rumor is that there is a way to set up a backdoor into a system in NDS that is completely hidden from everyone and everything. There IS a way to get real close to this, although how “hidden” it is remains to be seen. One catch – you need full access to NDS i.e. Admin access to set it up. But if you can get Admin’s password or access to a user with Admin or equivalent access then you can put in a backdoor that may go unnoticed for months, or perhaps never be discovered. Here’s how to set it up: • Get logged in as Admin or equivalent. • In NWADMIN highlight an existing container. • Create a new container inside this container. • Create a user inside this new container. No home directory. • Give this user full Trustee Rights to their own user object. • Give this user full Trustee Rights to the new container. • Make this user security equivalent to Admin. • Modify the ACL for the new user so they can’t be seen. • Adjust the Inherit Rig
