Bugtraq mailing list archives
Re: bind() Security Problems
From: baba () beckman uiuc edu (Baba Z Buehler)
Date: Mon, 5 Feb 1996 10:27:17 -0600
General Scirocco <sciri () newhackcity net> writes:
Cracking the MIT-MAGIC-COOKIE-1 authorization protocol. 1) Auth-data is generated from 16 successive random numbers. MIT-MAGIC-COOKIE-1 can use 2 different methods of seeding the random number generator: a) Using the process ID of xdm client & time of day in seconds b) Using the time of day in seconds & time of day in microseconds (that connection was established).
I believe that xdm is what is generating the cookies in these ways... this is why my login scripts make my cookies... randomkey=$( (ps -aewl;netstat -i;netstat -t;date) | md5 ); xauth add $(hostname)/unix:0 . $randomkey xauth add $(hostname):0 . $randomkey unset randomkey While generating more secure cookies, this still doesn't prevent sniffing and hijacking. b -- # Baba Z Buehler - 'Hackito Ergo Sum' # Beckman Institute Systems Services, Urbana Illinois # # "I only use my gun when kindness fails" # -- Robert Earl Keen, Jr. # # PGP public key on WWW homepage and key servers (key id: C13D8EE1) # WWW: http://www.beckman.uiuc.edu/~baba/
Current thread:
- Re: bind() Security Problems Richard Black (Feb 01)
- Re: bind() Security Problems dsiebert () icaen uiowa edu (Feb 01)
- Re: bind() Security Problems General Scirocco (Feb 01)
- Re: bind() Security Problems Baba Z Buehler (Feb 05)
- passwd command in AIX 4.1.4 Dave Roberts (Feb 05)
- Re: passwd command in AIX 4.1.4 Chris Burris (Feb 05)
- Re: passwd command in AIX 4.1.4 JaDe (Feb 05)
- CGI security: Escape newlines. Jennifer Myers (Feb 05)
- Re: CGI security: Escape newlines. Dave Andersen (Feb 05)
- Re: CGI security: Escape newlines. Fred Cohen (Feb 06)
- [Fwd: HTTPd 1.5a Security Hole!!! (fwd)] Rogue Agent (Feb 06)
- Re: bind() Security Problems General Scirocco (Feb 01)
- Re: bind() Security Problems dsiebert () icaen uiowa edu (Feb 01)
- abuse Red Hat 2.1 security hole David J Meltzer (Feb 02)
- resizecons Red Hat 2.1 security hole David J Meltzer (Feb 02)