| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 17 Feb 2007 01:32:26 +0000
From: pagvac <unknown.pentester@...il.com>
To: "Michael Holstein" <michael.holstein@...ohio.edu>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Solaris telnet vulnberability - how many on
yournetwork?
The following script might also help find Solaris telnet servers on
your network.
Note: I give no guarantees that it will work
# solaris-telnetd-audit.sh
IPSFILE="./ip-addresses.lst";
MESSAGE="possible Sun Solaris telned found";
EMAIL="youremail@...ain.com";
for IP in `cat $IPSFILE`
do
echo "Trying $IP ...";
if nmap -P0 -n -p23 -sS $IP | grep -i open > /dev/null
then
if nmap -P0 -n -p23 -sV $IP | grep -ie 'SunOS' -ie 'Solaris'
then
echo "$MESSAGE on $IP"; echo $IP >>
$0.results; echo $IP | mail -s $MESSAGE $EMAIL
fi
fi
done
On 2/12/07, Michael Holstein <michael.holstein@...ohio.edu> wrote:
> > If you run Solaris, please check if you got telnet enabled NOW.
>
> Simple test :
>
> nmap -sV -oG - -p23 your.net/cidr |grep "Sun Solaris"
>
> Cheers,
>
> Michael Holstein CISSP GCIA
> Cleveland State University
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
--
pagvac
[http://ikwt.com/]
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists