From: Josh Richard (jrichar4@d.umn.edu)
Date: Fri Aug 22 2003 - 18:45:06 CDT
Simple changes:
-- The perl script calls pkill instead of kill. pkill still works, kill
is safer. Please note the change.
-- The perl script contains a die statement which is called during an
unlikely condition. The condition can be generated by scanning a non
windows box posing as a windows box or inverting the program logic. The
code presented yesterday would cause a CGI error. I changed the code to
log the event (it will be interesting to see if the event occurs) and
redirect users to the registration page.
Here is a modified snippet:
---stuff deleted
if ($@) {
if ($@ =~ /timeout/) {
print "Location: http://netregIP/register.html
\n\n";
print LOG "$remote_host -- $user_agent --
TIMEOUT pid: $pid -- $dt\n";
system ("/bin/kill",$pid); # kill instead of pkill.
close LOG;
exit;
} else {
alarm(0);
print LOG "$remote_host -- $user_agent --
alarm(0) pid: $pid -- $dt\n";
print "Location: http://netregIP/register.html
\n\n";
exit;
}
}
-- The modified foo.c (scanning) code provided yesterday needs to be
tweaked in order to handle win 98/me boxes correctly. The initial code
from insecure.org returns a false positive for 98/ME machines. I am
running a fixed version. So far things look as though they are working
properly.
I will post the modified fix of the C code Monday AM provided things go
well.
//Thanks ML for the fix.
Regards,
Josh Richard
**********************************************************************
To unsubscribe from this list, send an e-mail message to
majordomo@southwestern.edu containing a single line with the words:
unsubscribe netreg
Send requests for assistance to: owner-netreg@southwestern.edu
**********************************************************************
This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:40 CDT