<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: fingerd problems

Re: fingerd problems

From: Elliot Lee <sopwith_at_dilbert.redhat.com>
Date: Thu, 16 May 1996 17:04:43 -0400

> [ list of ways to list all the users on a system using fingerd ]

Another vulnerability of many finger daemons is their ability to support
'chain' fingers. If they are passed a "username" in the form of
'user_at_ahost.net' the finger daemon will repeat the finger, effectively
hiding the tracks of anyone trying to scope out your system security.

For a demonstration, 'telnet prep.ai.mit.edu 79' and type
'[yourname]@[yourhost]'. If you have TCP wrappers installed, you will
notice that the finger connection comes from prep.ai.mit.edu, not [yourhost].

Elliot Lee
Received on May 16 1996

This message: [ Message body ]
Next message: Christopher X. Candreva: "Re: SunOS 4.1.4 fingerd"
Previous message: Kevin at Paranoia: "Re: SunOS 4.1.4 fingerd"
In reply to: Dave Dittrich: "Re: SunOS 4.1.4 fingerd"
Next in thread: Jon Lewis: "Re: fingerd problems"
Reply: Jon Lewis: "Re: fingerd problems"
Reply: Brian Mitchell: "Re: fingerd problems"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos