Re: To test a OpenSSH trojaned server

To: debian-security@lists.debian.org
Subject: Re: To test a OpenSSH trojaned server
From: Halil Demirezen <halild@bilmuh.ege.edu.tr>
Date: Mon, 5 Aug 2002 20:10:18 +0300 (EEST)
Message-id: <[🔎] Pine.LNX.4.21.0208052008460.10374-100000@bilmuh>
In-reply-to: <Pine.LNX.4.21.0208052006400.10374-100000@bilmuh>

No that is not the way i wish.
So think that there is a trojaned server. how can i test the connection..


something like, but not the exact way:

#telnet foo.com 6667 
Trying ...
 
<so what?>
 
 
 as i read from the net..
 it says Command D is for executing a command.
 
 
 
 
 On Mon, 5 Aug 2002, Rishi L Khan wrote:
 

> Well, as I understand it, the trojan run only when you compile the code
> ... it's not in the sshd program. So, you can only have it if you compiled
> > the code yourself. If so, you can just check the md5 sums from the
> > advisory.
> > 
> > 		-rishi
> > 
> > On Mon, 5 Aug 2002, Halil Demirezen wrote:
> > 
> > > Hi all,
> > >
> > > Where can i find a code that tests a vulnerable OpenSSH trojaned server.
> > >
> > > Or if i should write the code, What is this trojan server's
> > > specifications?
> > >
> > >
> > >
> > >
> > >
> > >
> > > --
> > > To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> > > with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> > >
> > 
> > 
> > 
> > -- 
> > To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> > with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> > 
> 
>

Reply to:

Prev by Date: Re: To test a OpenSSH trojaned server
Next by Date: PGP
Previous by thread: Re: To test a OpenSSH trojaned server
Next by thread: Potato security
Index(es):
- Date
- Thread