[From nobody Sat Mar  1 03:28:52 2008
Return-Path: &lt;SRS0=w7de=FI=lists.grok.org.uk=full-disclosure-bounces@bounces.m4x.org&gt;
X-Original-To: falco@falcal.net
Delivered-To: falco@falcal.net
Received: from yuuai.polytechnique.org (mx2.polytechnique.org [129.104.30.35])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client CN &quot;mx2.polytechnique.org&quot;,
	Issuer &quot;Polytechnique.org CA&quot; (verified OK))
	by mx1.falcal.net (Postfix) with ESMTP id 6148742C70
	for &lt;falco@falcal.net&gt;; Tue, 28 Nov 2006 18:02:33 +0100 (CET)
X-Original-To: falco@m4x.org
Delivered-To: falco@m4x.org
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client did not present a certificate)
	by mx2.polytechnique.org (Postfix) with ESMTP id 102684334
	for &lt;falco@m4x.org&gt;; Tue, 28 Nov 2006 18:07:08 +0100 (CET)
Received: by smtp.gentoo.org (Postfix)
	id 77A8F64600; Tue, 28 Nov 2006 17:02:28 +0000 (UTC)
Delivered-To: falco@gentoo.org
Received: from localhost (localhost [127.0.0.1])
	by smtp.gentoo.org (Postfix) with ESMTP id 3DDFE64868;
	Tue, 28 Nov 2006 17:02:25 +0000 (UTC)
X-Virus-Scanned: amavisd-new at gentoo.org
X-Spam-Score: -1.112
X-Spam-Level: 
X-Spam-Status: No, score=-1.112 required=5.5 tests=[AWL=-0.760,
	BAYES_00=-2.599, DCC_CHECK=2.17, TW_VN=0.077]
Received: from smtp.gentoo.org ([127.0.0.1])
	by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 7uONPi+-leN6; Tue, 28 Nov 2006 17:02:14 +0000 (UTC)
Received: from lists.grok.org.uk (lists.grok.org.uk [195.184.125.51])
	by smtp.gentoo.org (Postfix) with ESMTP id 449E76462C;
	Tue, 28 Nov 2006 17:02:09 +0000 (UTC)
Received: from lists.grok.org.uk (localhost [127.0.0.1])
	by lists.grok.org.uk (Postfix) with ESMTP id 3F217FDE;
	Tue, 28 Nov 2006 17:01:40 +0000 (GMT)
X-Original-To: full-disclosure@lists.grok.org.uk
Delivered-To: full-disclosure@lists.grok.org.uk
Received-SPF: none (lists.grok.org.uk: domain of sil@infiltrated.net does not
	designate permitted sender hosts)
Received: from hypnos.fscker.com (hypnos.fscker.com [198.66.92.82])
	by lists.grok.org.uk (Postfix) with ESMTP id EA95FE3F
	for &lt;full-disclosure@lists.grok.org.uk&gt;;
	Tue, 28 Nov 2006 17:01:29 +0000 (GMT)
Received: from hypnos.fscker.com (unknown [127.0.0.1])
	by hypnos.fscker.com (Postfix) with ESMTP id 398E53F459;
	Tue, 28 Nov 2006 11:02:37 -0600 (CST)
Received: by hypnos.fscker.com (Postfix, from userid 1006)
	id 37ACA3F458; Tue, 28 Nov 2006 11:02:37 -0600 (CST)
Received: from Dsphunxional (unknown [64.201.13.51])
	by hypnos.fscker.com (Postfix) with ESMTP id 7DED03F44F;
	Tue, 28 Nov 2006 11:02:36 -0600 (CST)
Received: from [192.168.1.105] by Dsphunxional (PGP Universal service);
	Tue, 28 Nov 2006 12:00:34 -0500
X-PGP-Universal: processed; by Dsphunxional on Tue, 28 Nov 2006 12:00:34 -0500
Message-ID: &lt;456C6AFF.3060004@infiltrated.net&gt;
Date: Tue, 28 Nov 2006 11:59:43 -0500
From: &quot;J. Oquendo&quot; &lt;sil@infiltrated.net&gt;
User-Agent: Thunderbird 1.5.0.8 (Windows/20061025)
MIME-Version: 1.0
To: Tavis Ormandy &lt;taviso@gentoo.org&gt;
References: &lt;456B3AE2.9070708@infiltrated.net&gt;
	&lt;20061127203433.GC6620@sdf.lonestar.org&gt;
	&lt;1638869788.20061128152124@Zoller.lu&gt;
	&lt;456C489F.4020105@infiltrated.net&gt;
	&lt;20061128154219.GA31705@sdf.lonestar.org&gt;
	&lt;456C5C31.4000002@infiltrated.net&gt;
	&lt;20061128160236.GB31705@sdf.lonestar.org&gt;
	&lt;20061128161621.GC31705@sdf.lonestar.org&gt;
In-Reply-To: &lt;20061128161621.GC31705@sdf.lonestar.org&gt;
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] SSH brute force blocking tool
X-BeenThere: full-disclosure@lists.grok.org.uk
Precedence: list
List-Id: An unmoderated mailing list for the discussion of security issues
	&lt;full-disclosure.lists.grok.org.uk&gt;
List-Unsubscribe: &lt;https://lists.grok.org.uk/mailman/listinfo/full-disclosure&gt;, 
	&lt;mailto:full-disclosure-request@lists.grok.org.uk?subject=unsubscribe&gt;
List-Archive: &lt;http://lists.grok.org.uk/pipermail/full-disclosure&gt;
List-Post: &lt;mailto:full-disclosure@lists.grok.org.uk&gt;
List-Help: &lt;mailto:full-disclosure-request@lists.grok.org.uk?subject=help&gt;
List-Subscribe: &lt;https://lists.grok.org.uk/mailman/listinfo/full-disclosure&gt;, 
	&lt;mailto:full-disclosure-request@lists.grok.org.uk?subject=subscribe&gt;
Content-Type: multipart/mixed; boundary=&quot;===============0722518081==&quot;
Sender: full-disclosure-bounces@lists.grok.org.uk
Errors-To: full-disclosure-bounces@lists.grok.org.uk
X-AV-Checked: ClamAV using ClamSMTP at djali.polytechnique.org (Tue Nov 28
	18:07:09 2006 +0100 (CET))
X-DCC-xorg-Metrics: yuuai 32702; Body=1 Fuz1=1 Fuz2=1
X-Spam-Flag: Unsure, tests=bogofilter, spamicity=0.470417, queueID=B9F2C4326
X-Virus-Scanned: ClamAV using ClamSMTP at falcal.net ,
	Tue Nov 28 18:02:33 2006 +0100 (CET)

This is a cryptographically signed message in MIME format.

--===============0722518081==
Content-Type: multipart/signed; protocol=&quot;application/x-pkcs7-signature&quot;;
	micalg=sha1; boundary=&quot;------------ms090402020708000507030700&quot;

This is a cryptographically signed message in MIME format.

--------------ms090402020708000507030700
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

Tavis Ormandy wrote:
&gt; On Tue, Nov 28, 2006 at 04:02:36PM +0000, Tavis Ormandy wrote:
&gt; I notice you also havnt solved the local privilege escalation, this can
&gt; be abused by local users to gain root by attempting to login with the
&gt; username set to a valid passwd entry and then winning the race condition
&gt; by creating a symlink to the system passwd file (of course, there are
&gt; dozens of other attacks).
&gt;
&gt; Thanks, Tavis.

And just what on God's earth does &quot;SOMEONE LOGGING IN WITH USERNAME SET 
TO A VALID PASSWORD ENTRY&quot; have to do with this script. Let me take my 
script out of the equation for a minute. &quot;SOMEONE LOGS IN WITH A 
USERNAME SET TO A VALID PASSWORD ENTRY&quot; don't you think this is a 
problem with the system they're on? Please explain to me how because I'm 
seriously curious to know how you envision this happening with this 
script of mine.

Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227
awk '($5==&quot;Illegal&quot;||$6==&quot;Illegal&quot;)&amp;&amp;$9==&quot;from&quot;{print $10}'

Would stop the insertion attack and only print out the tench field if 
fields 5, 6 and 9 match Illegal user from.

So that would pretty much minimize the attack on name insertion. If I 
wanted to I could also make sure that if someone came after field 10, 
then ignore the entire line:
Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227

But before you shoot back let me send your response for you:

Tavis Ormandy will write:
&gt;  &quot;Someone could log in using: &quot;Illegal User foo from 
$OWNIPADDRESS&quot;@host which would make an entry:
&gt;  Nov 27 16:31:21 local sshd[67010]: Illegal user  dd from  Illegal User 
foo from $OWNIPADDRESS 213.134.128.227&quot;

SO let me restate. I could modify it to look at lines 5, 6, and 9 ... 
Take a look at the tenth column and if anything comes after 
that...Ignore that entire line... Should I have done so, maybe... Will I 
do so... Maybe...

But wait there's more... Before you respond back Tavis, I will do so for 
you:

Tavis Ormandy will write:
 &gt; &quot;Someone could cause a race condition in awk that will allow peanut 
butter to seep into my colo&quot;

Sorry can't help you there.

As to a fix to someone injecting ranDumb addresses. That same awk 
statement above will work but if they're doing some netcat voodoo, then 
feel free to shoot off another email on how my script broke TCP/IP entirely.


-- 
====================================================
J. Oquendo
http://pgp.mit.edu:11371/pks/lookup?op=get&amp;search=0x1383A743
sil . infiltrated @ net http://www.infiltrated.net 

The happiness of society is the end of government.
John Adams


--------------ms090402020708000507030700
Content-Type: application/x-pkcs7-signature; name=&quot;smime.p7s&quot;
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename=&quot;smime.p7s&quot;
Content-Description: S/MIME Cryptographic Signature
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--------------ms090402020708000507030700--


--===============0722518081==
Content-Type: text/plain; charset=&quot;us-ascii&quot;
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--===============0722518081==--

]