David S Edwards ([EMAIL PROTECTED]) said:
> Well I busted somebody trying to hack my webserver that we do hosting on.
> Since I'm not an expert at decoding some of this stuff, I thought I would
> post the hacks here, hoping that somebody could shed some light on it. Oh,
> by the way, I caught this guy because he was careless and didn't delete the
> .bash_history file.
>
> Here is the source code for the c.c hack and I've attached another program
> called a.out (not sure what that program does) Any comments are greatly
> appreciated, David
He's trying to exploit a buffer overflow in glibc's host resolution
routine that you could exploit through traceroute (and probably other
things). If you've upgraded to the glibc in /updates, you're not
vulnerable.
Bill
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
