[148] in linux-security and linux-alert archive
Re: finger @ bug
daemon@ATHENA.MIT.EDU (Jeff Uphoff)
Mon Mar 13 14:00:50 1995
Date: Mon, 13 Mar 1995 13:42:25 -0500
From: Jeff Uphoff <juphoff@tarsier.cv.nrao.edu>
To: linux-security@tarsier.cv.nrao.edu
In-Reply-To: Your message of Mon, March 13, 1995 14:58:31 +0100
Reply-To: linux-security@tarsier.cv.nrao.edu
"MM" == Marek Michalkiewicz <ind43@ci3ux.ci.pwr.wroc.pl> writes:
MM> in.fingerd has a bug which allows "recursive" fingering. For example:
MM> finger user@host.other.domain@host.domain
MM> [...description, etc...]
MM> BTW, linux.nrao.edu has this problem too...
I know--I've played with it before to demonstrate to people what I call
*ahem* "an unintended feature."
I know somebody else (that we all know) that has this problem...try:
finger @linux.nrao.edu@linux.cs.helsinki.fi :)~
--Up.
