Bugtraq mailing list archives
Re: Forwared to me
From: tsoome () UT EE (Toomas Soome)
Date: Mon, 13 Jul 1998 23:42:45 +0300
On Mon, 13 Jul 1998, Michael H. Warfield wrote:
I would also like to remark about one thing. Solar Designer quoted one possible action from the advisory. That one point was a suggestion made by my Sun contacts. It was NOT our recommendation as the action to be taken. My PERSONAL recommendation is to disable finger if at all possible. It provides way too much information about accounts and
actually, finger is only top of ice mountain, what it will do: setpwent() while( getpwent() ) {} endpwent() nothing more. but, if this is such simple, nothing will prevent users INSIDE to write this; easy and simple way to block sysadmins while cleaning trails or whatever. Actually, there are not only password tables around - there are tables for services, mail aliases etc. After all, calling NIS functions directly is not such big mystery... just another way to generate load for server- if there are netgroups used for some kind of access control - tcpd wrapper, NFS access etc... so, even if You can survive one type of attack - netgroups are not too big etc, combining different types may be just enough to bring down system... toomas soome Tartu University, Estonia -- Gee, I feel kind of LIGHT in the head now, knowing I can't make my satellite dish PAYMENTS!
Current thread:
- sshd gives out version number, (continued)
- sshd gives out version number Tom Dyas (Jul 09)
- Forwared to me Raymond Medeiros (Jul 08)
- Re: Forwared to me Solar Designer (Jul 09)
- Remote count.cgi exploit mods _ _ (Jul 09)
- Re: Remote count.cgi exploit mods Gus (Jul 11)
- Re: Forwared to me Raymond Medeiros (Jul 09)
- socks5 1.0r5 buffer overflow.. Zach Brown (Jul 10)
- Re: Forwared to me Toomas Soome (Jul 10)
- Re: Forwared to me Michael H. Warfield (Jul 13)
- Re: Forwared to me Raymond Medeiros (Jul 13)
- Re: Forwared to me Toomas Soome (Jul 13)
- Re: Forwared to me Michael H. Warfield (Jul 13)
- Re: Forwared to me Jason Downs (Jul 13)
- Re: Forwared to me Illuminatus Primus (Jul 13)
- Netware 4.x Attack Tool Announcement Simple Nomad (Jul 13)
- Re: ncurses 4.1 security bug Pavel Kankovsky (Jul 09)
- Re: ncurses 4.1 security bug Warner Losh (Jul 10)
- inetd can leak file descriptors +FIX Jeff Forys (Jul 14)
- Re: ncurses 4.1 security bug Alexander Kjeldaas (Jul 15)