[THIN] Re: Citrix hack

• From: "Tony Lyne" <Tony.Lyne@xxxxxxxxxxxxxxxxxx>
• To: <thin@xxxxxxxxxxxxx>
• Date: Wed, 17 Dec 2003 09:06:42 +1300

Yes. If the client has a Win32 ICA client installed, wether it's the full PN or 
Web client an ICA file will by default have file associations in Explorer to 
pass it through to the ica client.

Soooo, if you double click on an ICA file it will use pn/local client to launch 
the ica session using the parameters defined in the ICA file.

I use this method for some sites I setup when defining builds for fat client 
workstations Im turning into dumb terminals. Just chuck the ica file into the 
startup folder and it connects straight to the published app on startup.

Tony Lyne
Senior Systems Engineer 
Computerland Central 
P O Box 1470 
PALMERSTON NORTH
Telephone (+64) 06 3537300
Facsimile (+64) 06 3566800
Mobile (+64) 0274 720696
E-mail Tony.Lyne@xxxxxxxxxxxxxxxxxx
Internet http://www.computerland.co.nz
CAUTION: This e-mail message and accompanying data may contain information that 
is confidential and subject to privilege. If you are not the intended 
recipient, you are notified that any use, dissemination, distribution or 
copying of this message or data is prohibited. If you have received this e-mail 
in error, please notify me immediately and delete all material pertaining to 
this e-mail. Thank you.
 


-----Original Message-----
From: Adam.Baum@xxxxxxxxxxxxxx [mailto:Adam.Baum@xxxxxxxxxxxxxx] 
Sent: Wednesday, 17 December 2003 8:48 a.m.
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Citrix hack

All,

My remote access servers do not take advantage of publishing.  Everyone
gets a full desktop,  but that is about to change.  I have one app where we
are going to limit the capabilities of the users to such an extent that
publishing the app is the only way to meet our needs.  I have come across a
hack that can lead to a compromise of metaframe servers (to see details,
http://sh0dan.org/files/hackingcitrix.txt   you can also go to
http://www.securiteam.com/ and search on citrix).  It looks as if these
hacks all require the use if .ica files.  If I am not using Nfuse, do .ica
files still come into play?

adam


********************************************************
This Week's Sponsor - 99Point9.Com Emergent Online
EOL Universal Printer 4.0 Has arrived!
http://www.99point9.com/public/products/
*********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
********************************************************
This Week's Sponsor - 99Point9.Com Emergent Online
EOL Universal Printer 4.0 Has arrived!
http://www.99point9.com/public/products/
*********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm

Other related posts:

• » [THIN] Citrix hack
• » [THIN] Re: Citrix hack
• » [THIN] Re: Citrix hack
• » [THIN] Re: Citrix hack
• » [THIN] Re: Citrix hack

1. Home
2. thin
3. Archive
4. 12-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---