Bugtraq mailing list archives
GNU SourceNavigator DEMO backdoor(gate,arch de triumphe)
From: elmer_j () UT EE (Elmer Joandi)
Date: Wed, 13 May 1998 08:14:32 +0300
Well, it is useful to do netstat -ae periodicaly. SN 4.0 demo for Linux listens on first free port on 0.0.0.0 *.*, even if localhost name is set to 127.0.0.1 (default 0.0.0.0) in SN configuration. most lovely command after telneting into it is "exec cat /etc/passwd" There is no direct mentioning of "the feature" in documentation. even if it can be explained (as everything can), not mentioning "the feature" in a first place is a serious ...(place your paranoid expression here) It comes probably to the point that "there is no such thing as a free lunch". But if there isn't, look at Sniff, www.takefive.co.at Elmer Joandi AS Cybernetica, http://www.cyber.ee/ http://www.ut.ee/~elmer_j/
Current thread:
- Re: 3Com switches - undocumented access level.) Aleph One (May 10)
- <Possible follow-ups>
- Re: 3Com switches - undocumented access level.) der Mouse (May 10)
- Re: 3Com switches - undocumented access level.) Riku Meskanen (May 11)
- GNU SourceNavigator DEMO backdoor(gate,arch de triumphe) Elmer Joandi (May 12)
- Re: 3Com switches - undocumented access level.) Sasha Egan (May 13)