RE: fingerprinting a windows ftpd

From: Mike Sues (msuesat_private)
Date: Sat Jul 07 2001 - 09:29:11 PDT

Next message: jay: "Re: Dsniff'ng wireless networks"

Previous message: Brian O'Berry: "Re: fingerprinting a windows ftpd"
In reply to: Franklin DeMatto: "fingerprinting a windows ftpd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

I used Google to search for pages with the more atypical
ftp commands supported (below) by this service (e.g. SITE
CHAT, SITE WHO, SITE CHAT) and found the following,

 http://www.bpftpserver.com/version.txt

It appears to have been renamed from G6 to BPFTP. You might want
to also check,

 http://www.atstake.com/research/advisories/2001/a040301-1.txt


Mike Sues
Ethical Hack Specialist
Cinnabar Networks Inc
http://www.cinnabar.ca
ph :613.720.4842
fax:613.236.2506

> -----Original Message-----
> From: Franklin DeMatto [mailto:franklinat_private]
> Sent: Friday, July 06, 2001 3:10 PM
> To: pen-testat_private
> Subject: fingerprinting a windows ftpd
>
>
> Does anyone have any advice on how to fingerprint this windows ftp server?
> I can't get a banner with the server name.
> HELP recieves the following response (none of the commands seemed
> to ID the
> server)
> Does anyone recognize it?
>
> HELP
> 214-Supported Commands :
> 214-PORT STOR APPE RETR CWD
> 214-PWD  XPWD USER PASS LIST
> 214-NLST TYPE SYST QUIT DELE
> 214-SIZE REST RNFR RNTO XMKD
> 214-MKD  RMD  ABOR PASV NOOP
> 214-CDUP SITE HELP STAT STOU*
> 214-MDTM STRU SMNT XCUP ACCT
> 214-ALLO REIN MODE XRMD XDEL
> 214-
> 214-Special Commands :
> 214-SITE MSG
> 214-SITE PSWD
> 214-SITE ZONE
> 214-SITE WHO**
> 214-SITE CHAT**
> 214-(* not implemented)
> 214-(** restricted)
> 214 [End of Help].
> Franklin DeMatto
> franklinat_private
> qDefense - DEFENDING THE ELECTRONIC FRONTIER
>
>
> ------------------------------------------------------------------
> --------------------
>
> This list is provided by the SecurityFocus Security Intelligence
> Alert (SIA) Service
> For more information on SecurityFocus' SIA service which
> automatically alerts you to
> the latest security vulnerabilities please see:
>
> https://alerts.securityfocus.com/
>
>


--------------------------------------------------------------------------------------

This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service
For more information on SecurityFocus' SIA service which automatically alerts you to 
the latest security vulnerabilities please see:

https://alerts.securityfocus.com/

Next message: jay: "Re: Dsniff'ng wireless networks"
Previous message: Brian O'Berry: "Re: fingerprinting a windows ftpd"
In reply to: Franklin DeMatto: "fingerprinting a windows ftpd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sat Jul 07 2001 - 10:14:04 PDT