Fingeree wants to keep track of the fingerer

Noam Mendelson c60b-1eq at web-1f.berkeley.edu
Mon Apr 8 16:22:43 AEST 1991 

In article <1991Apr8.020222.11776 at athena.mit.edu> jik at athena.mit.edu (Jonathan I. Kamens) writes:
>In article <10290 at hub.ucsb.edu>, 6600hubb at ucsbuxa.ucsb.edu (Richard Hubbell) writes:
>|> 	Does unix offer a method for keeping track of each
>|> occurence of being fingered?  i.e. if someone fingers me is there
>|> a way that I can tell who it was that fingered me? 
>  Someone else has pointed out that you can monitor finger connections by
>watching TCP port 79.  This solution, however, has several drawbacks:
> ... text deleted ...
>2. Watching a TCP port that another process is already bound to is somewhat
>   difficult, and requires network monitoring that is not doable at the novice
>   level.
>3. On a Unix system, port 79 is a reserved port, and therefore only the
>   superuser can do anything with it, so you'd have to be root to do the
>   monitoring.
>  If you are not the superuser, and you want to do this anyway, and your
>system supports named pipes, and your system's fingerd has no problem with
>reading from a named pipe, then you can do this by creating a named pipe as
>your .plan file, and running a process opens the pipe, selects it for write,
>and whenever it is ready for write, figures out what process is doing the
>reading and does monitoring stuff on that process, and then sends your .plan
>file over the pipe.

That's the method I use.  And the novice can easily monitor TCP port 79
by doing a 'netstat -n | fgrep ".79 "'.  If there is a connection to port 79,
it'll show up in the listing.
If you're the super user, though, a new fingerd would be the best solution.
That would also solve the problem of having to run the monitoring program,
and would guarantee (?) to catch every finger request.

+==========================================================================+
| Noam Mendelson   ..!agate!ucbvax!web!c60b-1eq | "I haven't lost my mind, |
| c60b-1eq at web.Berkeley.EDU                     |  it's backed up on tape  |
| University of California at Berkeley          |  somewhere."             |

More information about the Comp.unix.questions mailing list