| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: es at hush.com (es@...h.com) Subject: [ElectronicSouls] - Fake Identd -----BEGIN PGP SIGNED MESSAGE----- Dear List, We are tired of being vulnerable to identd exploits written by core@...soft.com, so we have designed our own identd server after many long hours of studying the RFC. Here's what we came up with. # cat ESidentd #!/usr/bin/perl # # small hack by BrainStorm - ElectronicSouls # # Copy the ESidentd program to /usr/sbin # Then vi /etc/inetd.conf and remove the existing identd # by removing the line that starts with "auth" ! # # Then append this line to the file: # # auth stream tcp nowait nobody /usr/sbin/vsidentd vsidentd # # And when back at the prompt hit killall -HUP inetd and you're done! $dreply = "ElectronicSouls-0wn-me"; # Spoofed reply $dinput = <STDIN>; # read standard input chomp($dinput); # remove \n print "$dinput : USERID : UNIX : $dreply\n"; # pretty simple, eh ? ;) # The Electronic Souls Crew [ElectronicSouls] (c) 2002 "Brought to you by Spiderman" -----BEGIN PGP SIGNATURE----- Version: Hush 2.2 (Java) Note: This signature can be verified at https://www.hushtools.com/verify wlMEARECABMFAj3oHRQMHGVzQGh1c2guY29tAAoJEN5nGqhGcjlt0vEAoIpqMu1/jREw 4Zc0oabSD7ckJOMLAJ9WAmMUeIUmZbAsRWTm5CLLA2ZesQ== =Kp1f -----END PGP SIGNATURE----- Concerned about your privacy? Follow this link to get FREE encrypted email: https://www.hushmail.com/?l=2 Big $$$ to be made with the HushMail Affiliate Program: https://www.hushmail.com/about.php?subloc=affiliate&l=427
Powered by blists - more mailing lists