Date: Sun, 12 Jan 2003 16:20:23 +0000 (GMT) From: Yonatan@xpert.com To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/46991: new port: dump MSRPC information Message-ID: <20030112162023.964598F4@node-110.xpert.com>
next in thread | raw e-mail | index | archive | help
>Number: 46991
>Category: ports
>Synopsis: new port: dump MSRPC information
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-ports
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Sun Jan 12 06:20:01 PST 2003
>Closed-Date:
>Last-Modified:
>Originator: Yonatan@xpert.com
>Release: FreeBSD 4.7-STABLE i386
>Organization:
>Environment:
System: FreeBSD Temujin 4.7-STABLE FreeBSD 4.7-STABLE #0: Wed Jan 8 11:54:56 GMT 2003 root@Temujin:/usr/obj/usr/src/sys/TEMUJIN i386
>Description:
One-file-port, from @stake. This dumps information from remote RPC.
Much like "rpcinfo -p host" on unix hosts. Please check my patches: I removed
an unused function so this wouldn't be marked as a security sensitive port,
and I'm not sure my Makefile change respects CFLAGS.
>How-To-Repeat:
>Fix:
--- dcetest.shar begins here ---
# This is a shell archive. Save it in a file, remove anything before
# this line, and then unpack it by entering "sh file". Note, it may
# create directories; files and directories will be owned by you and
# have default permissions.
#
# This archive contains:
#
# /usr/ports/security/dcetest
# /usr/ports/security/dcetest/files
# /usr/ports/security/dcetest/files/patch-Makefile
# /usr/ports/security/dcetest/files/patch-tcpstuff.c
# /usr/ports/security/dcetest/files/patch-tcpstuff.h
# /usr/ports/security/dcetest/Makefile
# /usr/ports/security/dcetest/pkg-descr
# /usr/ports/security/dcetest/pkg-comment
# /usr/ports/security/dcetest/distinfo
# /usr/ports/security/dcetest/pkg-plist
#
echo c - /usr/ports/security/dcetest
mkdir -p /usr/ports/security/dcetest > /dev/null 2>&1
echo c - /usr/ports/security/dcetest/files
mkdir -p /usr/ports/security/dcetest/files > /dev/null 2>&1
echo x - /usr/ports/security/dcetest/files/patch-Makefile
sed 's/^X//' >/usr/ports/security/dcetest/files/patch-Makefile << 'END-of-/usr/ports/security/dcetest/files/patch-Makefile'
X--- Makefile.orig Sat Jan 11 06:22:46 2003
X+++ Makefile Sat Jan 11 06:23:10 2003
X@@ -1,6 +1,6 @@
X .SUFFIXES: .a .o .c
X CC = gcc
X-CFLAGS = -Wall -funsigned-char -c -fPIC -ggdb
X+CFLAGS += -Wall -funsigned-char -c -fPIC -ggdb
X
X BINS = dcetest
X ALL = $(BINS)
END-of-/usr/ports/security/dcetest/files/patch-Makefile
echo x - /usr/ports/security/dcetest/files/patch-tcpstuff.c
sed 's/^X//' >/usr/ports/security/dcetest/files/patch-tcpstuff.c << 'END-of-/usr/ports/security/dcetest/files/patch-tcpstuff.c'
X--- tcpstuff.c.orig Sat Jan 11 06:46:08 2003
X+++ tcpstuff.c Sat Jan 11 06:50:59 2003
X@@ -229,6 +229,7 @@
X
X
X /* this function takes in a listenFd and returns an acceptedFd */
X+/* This is not used and gives a security warning in FreeBSD ports
X int
X tcp_accept(int listenFd)
X {
X@@ -242,12 +243,14 @@
X (struct sockaddr *)&clientAddr,
X &addrLen)) < 0)
X {
X+*/
X /* This is always an error, looping or not */
X+/*
X return -1;
X }
X-
X+*/
X /* Set the "don't linger on close" option */
X-
X+/*
X lingerVal.l_onoff = 0;
X lingerVal.l_linger = 0;
X if (setsockopt(clientFd, SOL_SOCKET, SO_LINGER,
X@@ -260,3 +263,4 @@
X return(clientFd);
X
X }
X+*/
END-of-/usr/ports/security/dcetest/files/patch-tcpstuff.c
echo x - /usr/ports/security/dcetest/files/patch-tcpstuff.h
sed 's/^X//' >/usr/ports/security/dcetest/files/patch-tcpstuff.h << 'END-of-/usr/ports/security/dcetest/files/patch-tcpstuff.h'
X--- tcpstuff.h.orig Sat Jan 11 06:48:15 2003
X+++ tcpstuff.h Sat Jan 11 06:48:54 2003
X@@ -42,5 +42,7 @@
X int
X write_uint32(int fd,uint32 data);
X
X+/* This is not used and gives a warning in FreeBSD's ports system
X int
X tcp_accept(int listenFd);
X+*/
END-of-/usr/ports/security/dcetest/files/patch-tcpstuff.h
echo x - /usr/ports/security/dcetest/Makefile
sed 's/^X//' >/usr/ports/security/dcetest/Makefile << 'END-of-/usr/ports/security/dcetest/Makefile'
X# Ports collection makefile for: dcetest
X# Date created: Jan 11 2003
X# Whom: Yonatan <Yonatan@xpert.com>
X#
X# $FreeBSD$
X#
X
XPORTNAME= dcetest
XPORTVERSION= 1.2
XCATEGORIES= security
XMASTER_SITES= http://www.atstake.com/research/tools/
XDISTNAME= dcetest
XEXTRACT_SUFX= .tar
X
XMAINTAINER= Yonatan@xpert.com
X
XALL_TARGET= dcetest
X
Xdo-install:
X ${INSTALL_PROGRAM} ${WRKSRC}/dcetest ${PREFIX}/bin
X
X.if !target(post-install) && (${PORTNAME} == "dcetest")
Xpost-install:
X @strip ${PREFIX}/bin/dcetest
X.endif
X
X.include <bsd.port.mk>
END-of-/usr/ports/security/dcetest/Makefile
echo x - /usr/ports/security/dcetest/pkg-descr
sed 's/^X//' >/usr/ports/security/dcetest/pkg-descr << 'END-of-/usr/ports/security/dcetest/pkg-descr'
XThis little utility dumps MSRPC endpoint information from Windows
Xsystems. Similar to the rpcdump program from Microsoft, but does not
Xneed a DCE stack and so runs on Unixes. dcetest can be very useful
Xonce inside a DMZ to fingerprint Windows machines on the network.
Xdcetest operates over TCP port 135. (Think of it as rpcinfo -p against
XWindows)
X
XWWW: http://www.atstake.com/research/tools/info_gathering/
END-of-/usr/ports/security/dcetest/pkg-descr
echo x - /usr/ports/security/dcetest/pkg-comment
sed 's/^X//' >/usr/ports/security/dcetest/pkg-comment << 'END-of-/usr/ports/security/dcetest/pkg-comment'
XUtility to dump MSRPC endpoint information from Windows systems
END-of-/usr/ports/security/dcetest/pkg-comment
echo x - /usr/ports/security/dcetest/distinfo
sed 's/^X//' >/usr/ports/security/dcetest/distinfo << 'END-of-/usr/ports/security/dcetest/distinfo'
XMD5 (dcetest.tar) = 0099655f1343e7fea6a15de35bc9fc81
END-of-/usr/ports/security/dcetest/distinfo
echo x - /usr/ports/security/dcetest/pkg-plist
sed 's/^X//' >/usr/ports/security/dcetest/pkg-plist << 'END-of-/usr/ports/security/dcetest/pkg-plist'
X@comment $FreeBSD$
Xbin/dcetest
END-of-/usr/ports/security/dcetest/pkg-plist
exit
--- dcetest.shar ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030112162023.964598F4>