From owner-freebsd-security Fri Sep 11 10:47:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA03776 for freebsd-security-outgoing; Fri, 11 Sep 1998 10:47:30 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from naserv.gdl.iteso.mx (ns.iteso.mx [148.201.1.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA03771 for ; Fri, 11 Sep 1998 10:47:28 -0700 (PDT) (envelope-from cacho@naserv.gdl.iteso.mx) Received: (from cacho@localhost) by naserv.gdl.iteso.mx (8.9.0/8.9.0) id MAA07789; Fri, 11 Sep 1998 12:46:58 -0500 (CDT) Date: Fri, 11 Sep 1998 12:46:57 -0500 (CDT) From: Hector Gonzalez Jaime To: Mike cc: Lutz Rabing , security@FreeBSD.ORG Subject: Re: fingerd exploit In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Maybe it has something to do with a message in bugtraq (like a month ago) about finger forwarding? It affected Solaris/SunOS, and it has something to do with fingerd allowing you to do this: finger user@host.one@host.two@host.three@so.on FreeBSD's fingerd lets you do this one, don't know if it hurts or not. On Fri, 11 Sep 1998, Mike wrote: > On Fri, 11 Sep 1998, Lutz Rabing wrote: > > > Has anybody heared of a fingerd exploit ? > > Yes and no... I haven't heard of a 'exploit', but I have heard > conversations about finger oddities... namely I've overheard people > discussing 'odd behavior on the part of finger'. I, unfortuneately, > don't have much more information. The oddity did relate to multiple > instances of fingerd (as you report), I believe... > > Do you run the vanilla finger or a variant such as secure finger? > > -mike > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message