[2563] in bugtraq
Re: SunOS 4.1.4 fingerd
daemon@ATHENA.MIT.EDU (Eilon Gishri)
Tue May 21 05:51:21 1996
Date: Tue, 21 May 1996 11:43:54 +0300
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Eilon Gishri <eilon@aristo.tau.ac.il>
X-To: patrick@chloe.dmv.com
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <XFMail.960520192256.patrick@chloe.dmv.com> from Patrick Ferguson
at "May 20, 96 07:22:57 pm"
>
> We use tcpd (tcp-wrappers) to block outside finger connections on a machine, but I
> tested it by going to a machine that didn't have wrappers installed and was able to
> use the above concatenation (user@hidden@free.machine) to look at the users online.
> So I still have to modify the source for the fingers on any machine that won't run
> wrappers (like IRIX).
>
> ------------------------------------------------------------------------------
> Patrick Ferguson - Systems Administrator patrick@dmv.com
> DelMarVa OnLine! - Salisbury, MD
>
If you run pidentd on you machines you can block access to nobody@ALL,
guest@ALL, root@ALL for fingerd thus blocking chained finger (fingerd
is usually run using those users in /etc/inetd.conf).
--
Eilon Gishri, Tel-Aviv University Computation Center
Home 03-5078671
E-mail: eilon@aristo.tau.ac.il
