wolf@grasp1.univ-lyon1.fr (Christophe Wolfhugel) (04/22/91)
Archive-name: internet/access-control/inet-secured/0--
Archive: grasp2.univ-lyon1.fr:/unix/comm/secured* [134.214.100.33]
Original-posting-by: wolf@grasp1.univ-lyon1.fr (Christophe Wolfhugel)
Original-subject: Finger logger (was: Re: Finger logger: several questions)
Reposted-by: emv@msen.com (Edward Vielmetti, MSEN)
[I post this as it might be of general interest]
I've written a small program that monitors telnetd/rlogind on a SVR3.2 and
it should be easy to adapt it to monitor the finger port.
How it works:
- started by inetd instead of the usual daemon
- issues a gethostbyaddr and if it succeed a gethostbyname to check the
reverse mapping
- gives control to the system daemon (rlogind, telnetd or whatever you want).
- Administrator is free to choose any action if the DNS resolution fails.
For people interested, you can FTP anonymously the package at host
grasp2.univ-lyon1.fr (134.214.100.33): /unix/comm/secured100.tar.Z
--
Christophe Wolfhugel (on irc: Zolf) | Email: wolf@grasp1.univ-lyon1.fr
INSA Lyon - Departement Informatique | "Lapalisse au bordel: la duree de"
69621 Villeurbanne Cedex | "l'attente est fonction de la longueur"
France | "de la queue."
[see also Wietse Venema's "logdaemon" from ftp.win.tue.nl:/pub/logdaemon.Z --Ed]
-- comp.archives file verification
grasp2.univ-lyon1.fr
-r--r--r-- 1 ftp 23552 Apr 16 09:07 /unix/comm/secured101.tar
-r--r--r-- 1 ftp 39936 Apr 21 10:37 /unix/comm/secured102.tar
found inet-secured ok
grasp2.univ-lyon1.fr:/unix/comm/secured*