Basic HTML version of Foils prepared May 19 99

Foil 37 Sneakin

From Computer Crimes: Examples of Network Security attacks Tango Group Internal Technology Seminars -- April 23 99. by Roman Markowski
Runs under Unix operating system
My network allows outgoing telnet (src port > 1024, destination port =23)
Attacker installs a sneaking daemon on our network and sends a few pings from outside. Daemon responses "telneting" out and the session is established
When connection made, sneakin client and server reverse the connection
Available from http://www.rootshell.com
Defense: strong internal host security and Principle Of Least Privileges (open absolutely minimal amount of services)

© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Mon Aug 16 1999