[Info-vax] Here it is, the VMS/CSWS/php Security Contest 2012
DTL
didier.morandi at gmail.com
Sun Apr 15 12:45:38 EDT 2012
Friends, today is Sunday, you have noting/g/n/i/t/o/n nothing to do this evening, TV programs are bad, no more <insert here your favourite drink brand> in your fridge, what could you do?
I have an idea.
When you Nmap 86.221.87.44 you get:
../..
PORT STATE SERVICE VERSION
21/tcp open ftp OpenVMS ftpd 5.6
|_ftp-anon: Anonymous FTP login allowed (FTP code 230)
22/tcp open tcpwrapped
23/tcp open telnet OpenVMS telnetd (OpenVMS 8.3)
53/tcp filtered domain
79/tcp open finger OpenVMS fingerd
| finger: Username Program Login Term/Location
|_SYSTEM $ Sun 7:36
80/tcp open http Apache httpd 2.0.63 ((OpenVMS) PHP/5.2.13)
111/tcp open rpcbind 2 (rpc #100000)
143/tcp open imap?
|_imap-capabilities: IMAP4rev1 IMAP4
515/tcp open printer
2049/tcp open nfs 2-3 (rpc #100003)
49161/tcp open unknown
...
Service Info: Host: dtl01.orange.fr; OS: OpenVMS
../..
(yes, I started all TCP/IP Services for the Contest purpose)
*******************
Contest question is :
*******************
What should be done to give ANONYMITY (ANONYMOUSITY ? AN HONEY MOUSE E.T. ?)
to this system ?
(you are allowed to break it into (if you succeed), there is nothing else than VMS, CSWS and php inside)
The one who gives a full solution, i.e. which *prevents* Nmap (or N-stalker or Burp or whatever tool among this list http://sectools.org/tag/vuln-scanners/) to know what target is at the end of this IP address
WINS a
<center><strong>SWISS CHOCOLATE BOX</strong></center>
that I will personally send via air mail.
Answers like "turn off all your services" is NOT a valid type of answer.
3... 2... 1... GO!
More information about the Info-vax
mailing list