Bugtraq mailing list archives
Re: fingerd problems
From: brian () saturn net (Brian Mitchell)
Date: Fri, 17 May 1996 02:41:47 -0400
On Thu, 16 May 1996, Elliot Lee wrote:
[ list of ways to list all the users on a system using fingerd ]Another vulnerability of many finger daemons is their ability to support 'chain' fingers. If they are passed a "username" in the form of 'user () ahost net' the finger daemon will repeat the finger, effectively hiding the tracks of anyone trying to scope out your system security. For a demonstration, 'telnet prep.ai.mit.edu 79' and type '[yourname]@[yourhost]'. If you have TCP wrappers installed, you will notice that the finger connection comes from prep.ai.mit.edu, not [yourhost].
Some www servers also include the 'finger' cgi program, which can be used in much the same way, ie: lynx http://www.cgis.net/cgi-bin/finger\?user@host Brian Mitchell brian () saturn net "I never give them hell. I just tell the truth and they think it's hell" - H. Truman
Current thread:
- information on syslog bug wanted, (continued)
- information on syslog bug wanted ALEXANDER SCHUETZ (May 17)
- BoS: SECURITY BUG in FreeBSD Krzysztof Labanowski (May 17)
- Re: BoS: SECURITY BUG in FreeBSD Dan Cross (May 17)
- Re: BoS: SECURITY BUG in FreeBSD Steve Reid (May 17)
- Re: TCP SYN probe detection tool available redeye () compulink gr (May 15)
- Re: TCP SYN probe detection tool available Casper Dik (May 16)
- SunOS 4.1.4 fingerd Andy Dills (May 16)
- Re: SunOS 4.1.4 fingerd Dave Dittrich (May 16)
- Re: fingerd problems Elliot Lee (May 16)
- Re: fingerd problems Jon Lewis (May 16)
- Re: fingerd problems Brian Mitchell (May 16)
- Re: fingerd problems Robert A. Pickering Jr. (May 17)
- Re: TCP SYN probe detection tool available Casper Dik (May 16)
- Re: SunOS 4.1.4 fingerd Kevin at Paranoia (May 16)
- Re: SunOS 4.1.4 fingerd Christopher X. Candreva (May 16)
- Re: SunOS 4.1.4 fingerd Niko Makila (May 16)
- Re: SunOS 4.1.4 fingerd Steve Coleman - SEWP (May 17)
- Re: SunOS 4.1.4 fingerd bitblt () bitblt resnet cornell edu (May 17)
- Re: SunOS 4.1.4 fingerd Yiorgos Adamopoulos (May 17)
- Re: SunOS 4.1.4 fingerd David B. Vanderpool (May 17)
- Re: SunOS 4.1.4 fingerd Taner Halicioglu (May 17)
- Re: SunOS 4.1.4 fingerd Craig Raskin (May 17)