[1175] in linux-security and linux-alert archive
Re: [linux-security] Cfinger (Yet more :)
daemon@ATHENA.MIT.EDU (Grant Taylor)
Sun Sep 22 05:21:28 1996
To: linux-security@tarsier.cv.nrao.edu
From: Grant Taylor <gtaylor+linsec092096@picante.com>
In-reply-to: Your message of "Thu, 19 Sep 1996 19:46:24 EDT."
<Pine.LNX.3.95.960919193609.9045A-100000@fbn.globalent.net>
Date: Fri, 20 Sep 1996 13:28:20 -0400
>>>>> Roscinante <rosc@fbn.globalent.net> writes:
> I hacked cfinger to no longer need root.
When I decided I needed a cluster-saavy finger daemon, I did rather
the opposite. I looked at gnu/icsi fingerd, and my vendor's fingerd,
and decided to write my own.
My little fingerd is extremely simple, and is intended to be
relatively secure while still returning who's where on my machines.
Rather than trust cfinger or rehash the same idea, I took the easy way
out - this fingerd reads information from /var/rwho.
This use of rwhod is appropriate for sites which have some degree of
trust in their local network users (and which filter udp services like
rwho at all external interfaces).
While it's been running fine here for some time, I'd love to have some
input from other sites. Give it a whirl:
ftp://ftp.picante.com/pub/gtaylor/misc/fingerd.c
--
Grant Taylor - gtaylor@picante.com - http://www.picante.com/~gtaylor/
Where do these people come from? Finger for PGP public key.