[ale] hackers and thier methods
Chris Fowler
cfowler at outpostsentinel.com
Tue Feb 19 20:02:06 EST 2002
<FONT face=Arial color=#0000ff
size=2>iptables and she can't surf at all. BAM!
<FONT face=Tahoma
size=2>-----Original Message-----From: Adrin
[mailto:haswes at mindspring.com]Sent: Tuesday, February 19, 2002 7:50
PMTo: Chris Fowler; Stephen Turner; ale at ale.orgSubject:
RE: [ale] hackers and thier methods
<FONT face=Arial color=navy
size=2><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; mso-bidi-font-size: 12.0pt">This
is starting to sound like real IT work.<SPAN
style="mso-spacerun: yes">Â Â My brother-in-law an System
Admin guy had to remove IE from a co-work cause she surfed the net to
much.  About 4 days later
she figured out that she could surf with Microsoft Office stuff.<SPAN
style="mso-spacerun: yes">Â I think it was Word.<SPAN
style="mso-spacerun: yes">Â So the he had to just deny her a
gateway.
<FONT face=Arial color=navy
size=2><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; mso-bidi-font-size: 12.0pt">Â
<FONT face=Arial color=navy
size=2><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; mso-bidi-font-size: 12.0pt">Â
<FONT face=Arial color=navy
size=2><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: Arial; mso-bidi-font-size: 12.0pt">Â
<FONT face=Tahoma color=black
size=2><SPAN
style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Tahoma">-----Original
Message-----From: Chris
Fowler [mailto:cfowler at outpostsentinel.com]<SPAN
style="FONT-WEIGHT: bold">Sent: Tuesday, February 19, 2002 7:37
PMTo: Stephen Turner;
ale at ale.orgSubject: RE:
[ale] hackers and thier methods
<FONT face="Times New Roman"
size=3><SPAN
style="FONT-SIZE: 12pt">Â
<FONT face=Arial color=blue
size=2>,If I am
correct. VI allows shell execution. For instance. Lets
assume ythat bob is only allow<FONT face=Tahoma color=black
size=2>ed to
run vi and edit a file. That is all.<FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face=Tahoma color=black
size=2>In his
shell script or in the passwd file you would have something like
this<SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face=Tahoma color=black
size=2>exec
/bin/vi /usr/data/daily_report<SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face=Tahoma color=black
size=2>Bob
will login every day edit the daily report and cron will send it out to
everyone.<SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face=Tahoma color=black
size=2>Bob
gets crafty. In vi he does :!/bin/ksh. Now bob has a
shell. Ouch. What more can bob do? Little things like that
can cause problems.<SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face=Tahoma color=black
size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black; FONT-FAMILY: Tahoma">Â <FONT
face=Tahoma color=black><SPAN
style="COLOR: black; FONT-FAMILY: Tahoma; mso-color-alt: windowtext">
<P class=MsoNormal
style="MARGIN-BOTTOM: 12pt; MARGIN-LEFT: 0.5in; MARGIN-RIGHT: 0in; mso-margin-top-alt: 0in"><FONT
face=Tahoma color=black size=2><SPAN
style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Tahoma">Â -----Original
Message-----From: Stephen
Turner [mailto:artic_knight at yahoo.com]<SPAN
style="FONT-WEIGHT: bold">Sent: Tuesday, February 19, 2002 5:43
PMTo:
ale at ale.orgSubject: [ale]
hackers and thier methods<FONT face=Tahoma color=black
size=2><SPAN
style="FONT-SIZE: 10pt; COLOR: black; FONT-FAMILY: Tahoma; mso-color-alt: windowtext">
<P class=MsoNormal
style="MARGIN-LEFT: 1in; MARGIN-RIGHT: 0.5in; mso-margin-top-alt: auto; mso-margin-bottom-alt: auto"><FONT
face="Times New Roman" color=black size=3><SPAN
style="FONT-SIZE: 12pt; COLOR: black">so i remove all these packages from my
box, should i bother removing vi? it offers no hacks as i see it but i
suppose my REAL question is, can a linux hacker or someone hacking linux run
programs outside of your box that will configure, alter the box? or do you
have to add programs such as a text editor in order to alter text? and what
stops them from installing or "planting" them on my server?
<SPAN
style="COLOR: black; mso-color-alt: windowtext">
<FONT face="Times New Roman"
color=black size=3>Â <FONT
color=black><SPAN
style="COLOR: black; mso-color-alt: windowtext">
<DIV class=MsoNormal
style="MARGIN-LEFT: 1in; MARGIN-RIGHT: 0.5in; TEXT-ALIGN: center; mso-margin-top-alt: auto; mso-margin-bottom-alt: auto"
align=center><SPAN
style="FONT-SIZE: 12pt; COLOR: black">
<P class=MsoNormal
style="MARGIN-LEFT: 1in; MARGIN-RIGHT: 0.5in; mso-margin-top-alt: auto; mso-margin-bottom-alt: auto"><FONT
face="Times New Roman" color=black size=3><SPAN
style="FONT-WEIGHT: bold; FONT-SIZE: 12pt; COLOR: black">Do You
Yahoo!?<A
href="http://sports.yahoo.com/oly">Yahoo! Sports - Coverage of the 2002
Olympic Games<SPAN
style="COLOR: black; mso-color-alt: windowtext">
More information about the Ale
mailing list