finger

[Radovan Garabik]

Martin 'Goran' Moravec <goran na ucw.cz> wrote:
 :>  : Ahoj,
 :> 
 :>  :  nevite jak moc nebezpecne je pouzivat na serveru sluzbu finger? 
 :> 
 :> Co to znamena "nebezpecne" ?
 :> Pokial fingerd bezi ako ne-root s obmedzenymi resourcami, nevidim 
 :> sposob preco by to malo byt nebezpecne

 : a co paranoia :-)
 : ale vazne
 : pokud nekdo prez cfingerd (kde byl nedavno exploit) ziska prava pro uzivatele nobody.
 
v cfingerde bol exploit uz niekolkokrat, spravny paranoik pouziva
iny finger demon :-)
 
 : dokaze natropit peknou neplechu.
 : treba si pritahnout do /tmp nejakej local root exploit a spustit
 : nebo alespon ziskat o servru pomerne dost informaci na jiny utok.

vravel som "s obmedzenymi resourcami", napriklad beh s limitom
na pocet procesov 1, max filesize 0, cpu time 1s, file descriptors
1, fs quota 0, rss apod. minimalne pri akych to este bezi a podobne...

-- 
 -----------------------------------------------------------
| Radovan Garabik  http://melkor.dnp.fmph.uniba.sk/~garabik |
| __..--^^^--..__         garabik @ fmph . uniba . sk       |
 -----------------------------------------------------------
Antivirus alert: file .signature infected by signature virus.
Hi! I'm a signature virus! Copy me into your signature file to help me spread!