LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-21-2006, 08:17 PM   #1
MikeyI258
LQ Newbie
 
Registered: Jun 2006
Posts: 9

Rep: Reputation: 0
security question...


I was wondering something, I checked my network services and I see that I have finger running, how can someone use this to hack into my computer and how would they go about doing it? Thank you for your help.
 
Old 06-21-2006, 09:56 PM   #2
musicman_ace
Senior Member
 
Registered: May 2001
Location: Indiana
Distribution: Gentoo, Debian, RHEL, Slack
Posts: 1,555

Rep: Reputation: 46
They can use it to gain knowledge of user & system info. Any available information to a malicious user is good for them, even if all they know is that you run an rpm-based system. At least it gives them something. Read a couple Certified Ethical Hacking books and you'll get what I'm talking about.

As for how they'd exploit it, I believe their is a rule about posting info on how to crack into computers, and even if there wasn't, I can't predict how you and everyone else in the world reading this would use that information. All I can say is read up on as much hacking/cracking books and senarios you can, understand what runs on your system and how that effects the system, implement the most paranoid and rediculous security measures possible and then lessen the security if clients can't use the system in the ways they were meant to.
 
Old 06-21-2006, 10:09 PM   #3
jschiwal
LQ Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 682Reputation: 682Reputation: 682Reputation: 682Reputation: 682Reputation: 682
You don't need to run finger or offer the service. However, if you are behind a NAT router and don't have port 79 (both tcp/udp according to /etc/services) open, then this service is just available on the LAN. On the other hand, if this is your only computer, then there is absolutely no reason to offer it. For a host in the DMZ, offering services to the internet, you absolutely want to disable the service and block the port.

Last edited by jschiwal; 06-21-2006 at 10:11 PM.
 
Old 06-21-2006, 10:11 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
how can someone use this to hack into my computer and how would they go about doing it?
The finger daemon is an interactive service, it will accept input and will return output. The input must conform to rules. If these rules can be broken you can try to make it do stuff. If you for instance can force the application to accept malformed or too much input that it starts to execute commands you embedded in your input, then you can try to execute commands as the owner finger runs as. There are safe(r) versions of finger around and even ones that return bogus information. AFAIK about the only thing that still uses finger is IRC. As the rest said in general you won't need it. If you need it you would know ;-p

Last edited by unSpawn; 06-21-2006 at 10:12 PM.
 
Old 06-21-2006, 11:22 PM   #5
fedora4002
Member
 
Registered: Mar 2004
Posts: 135

Rep: Reputation: 15
check the story of Morris Worm.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Some question regarding security jch02140 Linux - General 1 04-12-2006 09:45 AM
Security Question (TPM) Croaker Linux - Security 8 01-29-2006 05:08 AM
security question jonny bravo *BSD 1 07-07-2005 10:37 AM
Security Question brokenflea Slackware 1 02-16-2005 04:19 PM
Security question {newbie question} Radio Linux - Security 3 05-17-2002 07:32 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:46 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration