[zorp-hu] zorp gpl default policy hole?
Gabor Halasz
zorp-hu@lists.balabit.hu
Fri, 29 Oct 2004 12:16:37 +0200
A default policy sz=E9p nagy http open post proxy, =E9s ez=E9rt blacklist=
re
rakt=E1k egyik g=E9pemet a dsbl-en :-#, viszont ez mindenkit fenyeget, =
akit megtal=E1lnak, ha j=F3l l=E1tom.
Itt a teszt trace-e (nem t=FAl sz=F3sz=E1ty=E1r, de legal=E1bb azonnal fe=
ljelent :-#):
connect(5, {sa_family=3DAF_INET, sin_port=3Dhtons(80),=20
sin_addr=3Dinet_addr("xxx.xxx.xxx.xxx")}, 16)=20
=3D 0
send(5, "POST http://205.231.29.241:25/ HTTP/1.1\r\nHost:=20
http://205.231.29.241:25/\r\nConnection: close\r\nContent-length:=20
395\r\n\r\nHELO [xxx.xxx.xxx.xxx]\r\nMAIL FROM
:<dsbltester@"..., 511, 0) =3D 511
recv(5, "220 ", 8192, 0)=20
=20
=3D 4
recv(5, "dsbl [xxx.xxx.xxx.xxx]\r\n", 8192, 0)=20
=20
=3D 22
recv(5, "502 huh?\r\n502 huh?\r\n502 huh?\r\n502 huh?\r\n502 huh?\r\n502 =
huh?\r\n", 8192, 0)=20
=3D 60
recv(5, "250 ok\r\n250 ok\r\n250 ok\r\n354 go ahead\r\n250 listed=20
[xxx.xxx.xxx.xxx]\r\n221 goodbye\r\n", 8192, 0)=20
=3D 79
recv(5, "", 8192, 0)=20
=20
=3D 0
close(5)=20
=20
=3D 0
Mit tudok tenni ez ellen? Mi=E9rt fogadja el az idegen szervernek sz=F3l=F3=
=20
post-ot?
--=20
Gabor HALASZ <halasz.g@freemail.hu>