Firewall Wizards mailing list archives
Re: Testing fw for ftp vuln
From: Brian Hatch <firewall-wizards () ifokr org>
Date: Fri, 31 Jan 2003 22:20:15 -0800
My toolbox has standard things like nmap, hping, etc., but I never collected a tool to test some of the fw vulnerabilites to ftp exploits. Thinks like getting a PORT cmd (mis)interpretted by the f/w to get it to open a port to a service on the ftp client machine. I'm looking at some new stateful f/w boxes and want to see if they are vuln to these sorts of things. Any tips on what tool I should be looking for where?
Aside from netcat, of course, you could use ftpd-ozone and ftp-ozone by Dug Song. They used to be at http://www.monkey.org/~dugsong/ until it was censored, I'm sure they're on packetstorm or somewhere else. -- Brian Hatch "*Six*! Huh!" Systems and Security Engineer http://www.ifokr.org/bri/ Every message PGP signed
Attachment:
_bin
Description:
Current thread:
- Re: Testing fw for ftp vuln Marcus J. Ranum (Feb 01)
- <Possible follow-ups>
- Re: Testing fw for ftp vuln Brian Hatch (Feb 01)
- RE: Testing fw for ftp vuln Blaise St-Laurent (Feb 04)
- Re: Testing fw for ftp vuln Mikael Olsson (Feb 11)