Home page logo

bugtraq logo Bugtraq mailing list archives

Re: fingerd problems
From: sopwith () dilbert redhat com (Elliot Lee)
Date: Thu, 16 May 1996 17:04:43 -0400

[ list of ways to list all the users on a system using fingerd ]

Another vulnerability of many finger daemons is their ability to support
'chain' fingers. If they are passed a "username" in the form of
'user () ahost net' the finger daemon will repeat the finger, effectively
hiding the tracks of anyone trying to scope out your system security.

For a demonstration, 'telnet prep.ai.mit.edu 79' and type
'[yourname] () [yourhost]'. If you have TCP wrappers installed, you will
notice that the finger connection comes from prep.ai.mit.edu, not [yourhost].

Elliot Lee

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]