LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-19-2007, 03:08 AM   #1
kamariz
LQ Newbie
 
Registered: Jan 2007
Posts: 6

Rep: Reputation: 0
how to use cookies from tcp header to bypass login page


hi all..

when doing a network monitoring in my own lab using tcpflow, i got this tcp header info.

Quote:
POST /sendmessage.php HTTP/1.1
Host: www.friendster.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.1) Gecko/20061204 Firefox/2.0.0.1
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://www.friendster.com/bulletin.php?statpos=bulletintable&bid=109308367&uid=215772
Cookie: friendster_HBX=lucky=nope; friendster_cacheList=/=1169193129765; friendster_auth=uid%3D2188153%26lastclick%3D1169193544%26cty%3Dmy%26icty%3Dmy%26mac%3DMjg3N2VhMjhhN2 Y3OWY0OWM1ZTQ0NDZjMzNjZWFmZmU%2A; friendster_tzoffset=28800; friendster_6apart_auth=uid%3D2188153%26lastclick%3D1169193544%26timeout%3D1169279944%26cty%3Dmy%26ma c%3DZDhlYzhiNzY0ZmFmNjczMzExMmJiNzY1MjM4MWIxNTE%2A; friendster_pusit_auth=uid%3D2188153%26lastclick%3D1169193544%26timeout%3D1169279944%26cty%3Dmy%26mac %3DMzYyMTZkODU2ZjAyOWI2NTg2NjNiODg2YmUyZjIyZTc%2A; friendster_update=/user.php
Content-Type: application/x-www-form-urlencoded
Content-Length: 7183
i m using 2 pc to do this experiment. 1 pc running tcpflow to dump all the packet and use another pc to login to my frendster. what i want to do is, using the cookies info from the tcp header to bypass friendster's login page.

anyone have suggestion,tools,tutorial on how to accomplish my goal?

thanks ..
 
Old 01-19-2007, 08:04 PM   #2
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 76
a) That's not a TCP cookie, it's a HTTP cookie. TCP cookies are used to defend against synfloods, they aren't used for authentication.
b) It seems likely that you would be trying to automatically login to Friendster with scripts (and then perform some automated functions), which I'm fairly certain is forbidden by the Friendster ToS.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Help! ?Bypass the auto-login? gub Mandriva 1 01-13-2007 07:44 PM
problems getting tcp header infomation from sk_buffer DrowningFish Programming 0 04-15-2006 01:00 AM
TCP header checksum live_dont_exist Programming 16 04-13-2005 12:45 PM
catch the tcp header for modification from the kernel mprabhu Linux - Software 2 07-24-2004 04:46 AM
Bypass Login Password sourlinux Linux - Security 5 02-08-2004 07:55 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:23 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration