The Dreams of our Fathers
FTP is an age old p2p style of transfer. How many of you know what ftp is based off of and how many different options you have when it comes to ftp?
For starters ftp = file transfer protocol. This is pretty much the entirety and essence of p2p. Just tossing files between computers. FTP works off an 8 bit client server protocol. This means the protocol distinguishes between the client and the server in the process of transfer. Most people require a client of some sort to browse ftp servers. The possibilities here are endless. SmartFTP, FTP Explorer, Bulletproof FTP, Cute FTP, etc. There are loads and loads more, but those are the most well known. Windows has a built in ftp client/server which you can set up if you know what you're doing but they don't make it easy. Firefox has a built in client which is pretty easy to use and is suggested by myself.
There are problems with ftp, but most clients have eliminated those problems. Slow transfer rate, download start, and login procedures are a few of those problems.
FTP connections can be hard on your bandwidth though cause of the connection stylization that is used. Plus once the client opens the port to actively participate in file transfer. The ports used by ftp are most often 20 or 21. Each port has a purpose. 20 is where the info streams to and 21 is where commands are sent/recieved. This is very useful to know when you know someone has a ftp set up. There are numerous tools that all you need is an ip address and a port number to get access to someone's pc...if you're a script kiddie that is.
Personally I enjoy ftp "hacking" because I love DoS attacks. This can only be accomplished if the ftp allows anonymous access or the attacker has a login AND if it's on an IIS server. Using the ability to input a raw ftp command we can overflow IIS. Sending a 316 character sequence will bypass the minimum buffer in which you'll have to get by in order for the DoS attack to work. Anything over 316 should be successful but if you figure out the specific number of characters then it will appear as a simple overflow of the IIS rather than a DoS attack. Of course we'll still need to send a command through when we do this so just use a ls which will list the files in the specified folder. Then any character following that should be good. You could do nothing but the letters DOS over and over till you hit it and it'll work.
*hint 505...0x41414141
Please not that with the DoS attack and the imminent overflow of IIS then ALL IIS services will be disabled. This includes NNTP, SMTP, (whatever web service there may be), etc. HMMM, I do believe I just told novices how to DoS attack an ftp...Shit happens.
This isn't the only exploit that you can take advantage of when it comes to FTPs. If you wanna know more you could always do some research ;-) knowledge is power.
AK
For starters ftp = file transfer protocol. This is pretty much the entirety and essence of p2p. Just tossing files between computers. FTP works off an 8 bit client server protocol. This means the protocol distinguishes between the client and the server in the process of transfer. Most people require a client of some sort to browse ftp servers. The possibilities here are endless. SmartFTP, FTP Explorer, Bulletproof FTP, Cute FTP, etc. There are loads and loads more, but those are the most well known. Windows has a built in ftp client/server which you can set up if you know what you're doing but they don't make it easy. Firefox has a built in client which is pretty easy to use and is suggested by myself.
There are problems with ftp, but most clients have eliminated those problems. Slow transfer rate, download start, and login procedures are a few of those problems.
FTP connections can be hard on your bandwidth though cause of the connection stylization that is used. Plus once the client opens the port to actively participate in file transfer. The ports used by ftp are most often 20 or 21. Each port has a purpose. 20 is where the info streams to and 21 is where commands are sent/recieved. This is very useful to know when you know someone has a ftp set up. There are numerous tools that all you need is an ip address and a port number to get access to someone's pc...if you're a script kiddie that is.
Personally I enjoy ftp "hacking" because I love DoS attacks. This can only be accomplished if the ftp allows anonymous access or the attacker has a login AND if it's on an IIS server. Using the ability to input a raw ftp command we can overflow IIS. Sending a 316 character sequence will bypass the minimum buffer in which you'll have to get by in order for the DoS attack to work. Anything over 316 should be successful but if you figure out the specific number of characters then it will appear as a simple overflow of the IIS rather than a DoS attack. Of course we'll still need to send a command through when we do this so just use a ls which will list the files in the specified folder. Then any character following that should be good. You could do nothing but the letters DOS over and over till you hit it and it'll work.
*hint 505...0x41414141
Please not that with the DoS attack and the imminent overflow of IIS then ALL IIS services will be disabled. This includes NNTP, SMTP, (whatever web service there may be), etc. HMMM, I do believe I just told novices how to DoS attack an ftp...Shit happens.
This isn't the only exploit that you can take advantage of when it comes to FTPs. If you wanna know more you could always do some research ;-) knowledge is power.
AK
posted by Akiratima at 9/22/2005 06:23:00 PM
0 comments
