With respect to the dreadfully OLD phf problem, I've implemented a "unique" solution. Here's what I use in place of the old phf... It gives fun replies to "id", "uname" and "passwd" (as in /bin/cat%20/etc/passwd).
For example, it generates a unique passwd file each time at random. Interesting lusernames^H^H^H^H^H^H^H^Husernames too. Here, try: http://www.sjis.com/cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd http://www.sjis.com/cgi-bin/phf?Qalias=x%0a/usr/bin/id http://www.sjis.com/cgi-bin/phf?Qalias=x%0a/bin/uname%20-a http://www.sjis.com/cgi-bin/phf Here it is, I move that it be incorporated into the cgi-scripts package... It requires perl 5.0x and CGI.pm. ---chop here---- #!/usr/bin/perl # phf buster # They want a passwd file to crack? Let's give them one. srand(time^$$); # Don't ask about the goofy order. For some reason, perl outputs the # members of the hash in a seemingly random order. Larry? %lusers = ( bin => 'been', daemon => 'try', operator => 'time', adm => 'dork', lp => 'for', uucp => 'year', news => 'a', lart => 'would', duh => 'Why', bill => 'you', hillary => 'holes', dork => 'a', beavis => 'known', hank => 'are', bubba => 'over', dale => 'that', harvey => 'Only', dreck => 'your', slappy => 'have', dweeb => 'wasting', smack => 'time'); @shells = ('/bin/sh','/bin/csh','/usr/bin/ksh','/usr/local/bin/tcsh','/usr/local/bin/bash'); use CGI; $query = new CGI; $qs = $query->query_string; if ( $qs =~ /id/i ) { print $query->header('text/plain'); print "uid=65534(nobody) gid=65535 groups=65535\n"; print "Did you really think httpd would be running as root? Come on.\n"; } elsif ( $qs =~ /passwd/i ) { print $query->header('text/plain'); $rootpw = &crypt_it('dork'); print "root:$rootpw:0:0:root:/:/bin/sh\n"; $uid = 5; $gid = 100; foreach $luser (keys %lusers) { $home = '/home/' . $luser; $shell = $shells[rand($#shells)]; $pw = &crypt_it($lusers{$luser}); $line = join(':', $luser, $pw, $uid, $gid, $luser, $home, $shell); print "$line\n"; $uid++; } } elsif ( $qs =~ /uname/i ) { print $query->header('text/plain'); print "Hamilton97 beaver 4.0 #1 Thu Feb 18 11:19:54 EST 1997 cray\n"; } else { print $query->header('text/plain'); print "We don\'t run phf here. Go away.\n"; } sub crypt_it { local($user,$pass)[EMAIL PROTECTED]; local($nslat,$week,$now,$pert1,$pert2); local(@salt_set)=('a'..'z','A'..'Z','0'..'9','.','/'); $now=time; ($pert1,$per2) = unpack("C2",$user); $week = $now / (60*60*24*7) + $pert1 + $pert2; $nsalt = $salt_set[$week % 64] . $salt_set[$now %64]; return crypt($pass,$nsalt); } -----chop here------ Jason Costomiris | Finger for PGP 2.6.2 Public Key [EMAIL PROTECTED] | "There is a fine line between idiocy My employers like me, but not | and genius. We aim to erase that line" enough to let me speak for them. | --Unknown http://www.jasons.org/~jcostom -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
