Nanog traceroute format string exploit. (fwd)
This came through on bugtraq this afternoon. -jba __ [[EMAIL PROTECTED]] :: analogue.networks.nyc :: http://analogue.net -- Forwarded message -- Date: Sun, 21 Jul 2002 14:09:24 +0200 From: SpaceWalker [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Nanog traceroute format string exploit. Hello, As the vulnerability has been published some weeks ago, and no working exploit has been released (the perl exploit was joke) I decided to release my private exploit. I do it only because -This exploit will never be used to haxor something because I never saw this traceroute used by default -This exploit find offsets by the proper way and doesn't place the target adresses in the format string. (and is interresting to study for beginners). Have phun, please don't haxor with it. SpaceWalker tracerouteexp.tgz Description: Binary data
Re: What's wrong with provisioning tools?
On Wed, 12 Jun 2002, Stephen Griffin wrote: :: I would be really surprised if anything other than mom-and-pop shops :: didn't have _at least_ this. :: :: rtrmon or rancid can do great config archiving and provide difference :: output. :: I don't think the issue is detecting change as much as it is associating change to specific goals/tickets, etc.. If an ACL changes on a router, rancid will pick it up, but right now there is no automated way to tell whether that was as a result of a customer request or a security breach. -jba __ [[EMAIL PROTECTED]] :: analogue.networks.nyc :: http://analogue.net
Re: statistics.
On Tue, 11 Jun 2002, Micah wrote: :: I am looking for a ballpark count concerning amount of current internet :: nodes. ( obviously not exact ) With data relevant to this year. Feel free :: to contact off-list. :: hey micah, http://www.netsizer.com/ -jba __ [[EMAIL PROTECTED]] :: analogue.networks.nyc :: http://analogue.net
Re: Selective DNS replies
:: On Wed, Apr 24, 2002 at 08:55:15PM +0100, Avleen Vig wrote: :: :: This subject has probably been talked to death, so I apologise in advance :: for bringing it up! :: :: Is there any DNS server currently availible that can reply to DNS lookups :: based on the source IP address? :: djbdns (tinydns) can do this via location tags. http://cr.yp.to/djbdns/faq/tinydns.html (see question: How do I send different clients to different clusters of servers?) -jba __ [[EMAIL PROTECTED]] :: analogue.networks.nyc :: http://analogue.net