Re: SunOS 4.1.4 fingerd

Eilon Gishri (eilon@aristo.tau.ac.il)
Tue, 21 May 1996 11:43:54 +0300

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Eilon Gishri: "Re: SunOS 4.1.4 fingerd"
Previous message: CERT Bulletin: "CERT Vendor-Initiated Bulletin VB-96.06 - FreeBSD"
In reply to: Patrick Ferguson: "Re: SunOS 4.1.4 fingerd"
Next in thread: Eilon Gishri: "Re: SunOS 4.1.4 fingerd"
Next in thread: invalid opcode: "Re: SunOS 4.1.4 fingerd"

>
> We use tcpd (tcp-wrappers) to block outside finger connections on a machine, but I
> tested it by going to a machine that didn't have wrappers installed and was able to
> use the above concatenation (user@hidden@free.machine) to look at the users online.
> So I still have to modify the source for the fingers on any machine that won't run
> wrappers (like IRIX).
>
> ------------------------------------------------------------------------------
> Patrick Ferguson - Systems Administrator                      patrick@dmv.com
> DelMarVa OnLine! - Salisbury, MD
>
If you run pidentd on you machines you can block access to nobody@ALL,
guest@ALL, root@ALL for fingerd thus blocking chained finger (fingerd
is usually run using those users in /etc/inetd.conf).

--
                Eilon Gishri, Tel-Aviv University Computation Center
                Home 03-5078671
                E-mail: eilon@aristo.tau.ac.il

Next message: Eilon Gishri: "Re: SunOS 4.1.4 fingerd"
Previous message: CERT Bulletin: "CERT Vendor-Initiated Bulletin VB-96.06 - FreeBSD"
In reply to: Patrick Ferguson: "Re: SunOS 4.1.4 fingerd"
Next in thread: Eilon Gishri: "Re: SunOS 4.1.4 fingerd"
Next in thread: invalid opcode: "Re: SunOS 4.1.4 fingerd"