Operating Systems > Linux and UNIX

Netcraft - Web Server Signatures help

<< < (5/7) > >>

voidmain:

quote:Originally posted by X11 / BOB: l33t h4x0r:
Now thats funny, how did you do it?
--- End quote ---


I was just thinking. I believe it may be fairly easy to spoof the netcraft uptime chart using iptables/ippersonality. Maybe that will be my next conquest. I think it would be pretty cool if I could get my system to show up as a Sega Dreamcast with about 12 years of uptime.  

preacher:

quote:Originally posted by void main:


I was just thinking. I believe it may be fairly easy to spoof the netcraft uptime chart using iptables/ippersonality. Maybe that will be my next conquest. I think it would be pretty cool if I could get my system to show up as a Sega Dreamcast with about 12 years of uptime.    
--- End quote ---


This is a funny idea, spoofing the uptime, how exactly does Netcraft find a system's uptime?

voidmain:

quote:Originally posted by ThePreacher:


This is a funny idea, spoofing the uptime, how exactly does Netcraft find a system's uptime?
--- End quote ---


I would imagine they do it in a similar way to the way nmap determines it, via TCP timestamps. I just spent the last hour or so going through ippersonality and I couldn't figure out a way of effecting nmap results via the configuration files and I don't believe it is possible without hacking it. But I'm not proficient enough with TCP at this low of a level. Might have to do some more research.

On another note, did you get my last message regarding your Apache hack?

Master of Reality:
did you have to recompile the kernel to use ippersonality?

voidmain:
Yes, you actually have to do a little more than that. I downloaded the 2.4.20 kernel source, applied the ippersonality kernel patch (there is a patch for 2.4.20 on sourceforge). Then I did a make config and turned on a couple of other necessary options like connection tracking (the options are listed in the README or INSTALL included with the ippersonality tar.gz package). Then compiled and installed the kernel.

Now that's not the end of it. You also have to patch "iptables". I downloaded the 1.2.7a source for iptables and applied the ippersonality patch for iptables, then modified the Makefile so iptables would install to the same directories that my distro has it already installed in. There was one more thing that needed to be done in the iptables source for 1.2.7a. There is a label/define that needs to be changed in several places in the source because it was changed in the new kernel source. This was easily done with a perl command that I found in one of the ippersonality message list archives. Then I did a "make" and "make install".

Then to masquerade as another OS you have to run a couple of iptables commands along with a configuration file of the  operating system you want to masquerade as and you are done.

This sounds like a lot but if you are interested I could do another step by step instruction and put it in my RedHat tips section. I think if I did that it wouldn't be hard for anyone to follow. I also wrote my own script to make it easy to change what OS you are masquerading as and call it from the /etc/init.d/iptables service script. Basically once installed all you have to do is comment out one line and uncomment another to change which OS you want to masquerade as. I started last night writing my own config file for a Cray supercomputer but fell asleep from exhaustion.     Maybe this evening I will work on it some more. Shouldn't take too long to create.

[ December 05, 2002: Message edited by: void main ]

Navigation

[0] Message Index

[#] Next page

[*] Previous page