powered by linux .::.: started in 1998 .::.:    


giancarlo erra .: tech homepage :.
Contacts


.: email . info@bluecodes.com
.: icq . 69177714
.: fax . (0039) 06 233218527 		Links

.:: http://www.nosound.net
.:: http://www.bluecodes.com
.:: http://www.synesthesiasense.com
.:: http://nolistening.nosound.net
1 .:: homepage
homepage, news, updates.
2 .:: who am I?
something more about me, my life, my friends.
3 .:: the alfalinux project
the alfalinux minidistribution homepage: documentation, downloads, links, related projects.
4 .:: php factory
some works related to the php world: documentation, tutorials, scripts.
5 .:: documentation
documentation/tutorials/articles I wrote or translated.
6 .:: other linux projects
all my linux software & projects.
7 .:: resources
miscellaneous tech resources
8 .:: thanks
people I like to thanks..







:. faked telnet







:: faked telnet v0.1.3 beta

(c) 2000 Giancarlo Erra

This software is under the GNU Public License (GPL)





some IMPORTANT information about this project:
first of all, please consider to try this software only for test purposes! You have to protect and monitor your server, it's an HIGHLY INSECURE and EXPERIMENTAL project. The goal is to open a "false" telnet to the world, trying to illude the user to be in a normal telnet session. Once a connection is opened, the script try to get some useful information on the connecting host and print out results to file.log file (you can have logging problems with slow connections).
Please notice that the program do all this via a netcat connection and a shell script. You must have netcat compiled with the -e option allowed (it's not default because it is a security gap), and all this should be launched in a root environment because you need to use the telnet service (port 23).
Please remember that this is an INSECURE telnet server.
I'll be glad to receive suggestions, opinions about this project, and most of all new and improved shell code :)



install/usage:
Simply go to the "download and examples" section below, save on your hard disk the files named "faked_telnet" and "mailwarn", chmod +x them, check if you have netcat (named also "nc") with -e option allowed, READ CAREFULLY the "faked_telnet" script file and launch (from root) this command (please remember to disable the standard in.telnetd if it's listening on):

netcat -l -p 23 -e ./faked_telnet

Then try to telnet from outside to your machine and good luck!





Downloads and examples

:. the faked_telnet file
:. the mailwarn script
:. an example of a file.log with a single entry: view

This example is about a faked_telnet (running my dialup machine) that logs my telnet connection from sourceforge.net.
In order you can see these informations:
1) Date / Hour
2) Netstat output about the established connection
3) Nslookup respone
4) Finger @remotehost response (disabled in this case, you see only [sourceforge.net])
5) User (please ignore all that stupid chars) and password used for the login
6) Traceroute to remohost output






Todo
This list should be very very long:
1) general optimization (etc... etc..)
2) best issue alternatives (I don't like RH...)
3) hidden password and prompt (any idea?)
4) a real mailwarn system
5) more controls, more configuration, more ... ;)
6) more security (someone tells it to me, I think it's obvious .. probably it'snt :P)

NOTE: please don't ask me to write it in C or everything else. I love shell scripts, I know it's not so secure, I want to write it in shell script and secure it in shell script ... any idea? :)







..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..::..
© 2002