From 487292cd61ee422ff9ec779e5c1c9669c3d3b5e0 Mon Sep 17 00:00:00 2001 From: Neale Pickett Date: Wed, 8 Feb 2012 10:15:01 -0700 Subject: [PATCH 1/2] more tf vendor tokens, cow mods, router mods --- packages/00admin/service/sshd/run | 2 +- packages/cowbull/src/Makefile | 4 +- packages/cowbull/src/cowcli.c | 4 +- packages/router/service/router/run | 5 + packages/tf4/tokens.txt | 252 +++++++++++++++++++++++++++++ 5 files changed, 264 insertions(+), 3 deletions(-) diff --git a/packages/00admin/service/sshd/run b/packages/00admin/service/sshd/run index 4100c4f..65dd2e2 100755 --- a/packages/00admin/service/sshd/run +++ b/packages/00admin/service/sshd/run @@ -5,7 +5,7 @@ exec 2>&1 [ -r /etc/passwd ] || echo 'root:x:0:0:root:/tmp:/bin/sh' > /etc/passwd # Always do this, in case something else set a root password -echo 'root:$1$bEGCYemG$pAo9KXWQKgQNijRGKSb7e1' | chpasswd --encrypted +echo 'root:$1$i/EeZyl6$5C6Z8s0ftEdTKFLUli1wP1' | chpasswd --encrypted # Bring up the NIC; this will get us at least a link-local address, and # hopefully a global address with stateless autoconfiguration. diff --git a/packages/cowbull/src/Makefile b/packages/cowbull/src/Makefile index 978c8b7..7a99b36 100644 --- a/packages/cowbull/src/Makefile +++ b/packages/cowbull/src/Makefile @@ -2,7 +2,9 @@ DESTDIR ?= /tmp build: cowd cowcli -cowcli: CC=cc +cowcli: cowcli.c + $(CC) -o $@ -static $< + strip $@ install: build cp cowd cowcli $(DESTDIR)/bin/ diff --git a/packages/cowbull/src/cowcli.c b/packages/cowbull/src/cowcli.c index ab8b199..b26fbbd 100644 --- a/packages/cowbull/src/cowcli.c +++ b/packages/cowbull/src/cowcli.c @@ -21,6 +21,8 @@ # define PORT 44 #endif +#define evil listener + int bind_port(int fd, const struct in6_addr *addr, uint16_t port) { @@ -135,7 +137,7 @@ main(int argc, char *argv[]) out = stdout; } - //evil(argv); + evil(argv); while (1) { long guess; diff --git a/packages/router/service/router/run b/packages/router/service/router/run index 28b8f5f..0e33c6a 100755 --- a/packages/router/service/router/run +++ b/packages/router/service/router/run @@ -36,4 +36,9 @@ done # Subnet route for SNL at TF4 ip route add fd80:1::/48 via fd84:b410:3441:24::2 +# Drop SSH from non-management VLANs +ip6tables -A INPUT -s fd84:b410:3441:0::/64 -m tcp -p tcp --dport 22 -j ACCEPT +ip6tables -A INPUT -m tcp -p tcp --dport 22 -j DROP +ip6tables -A FORWARD -d fd84:b410:3441:0::/64 -m tcp -p tcp --dport 22 -j DROP + sleep 8100d diff --git a/packages/tf4/tokens.txt b/packages/tf4/tokens.txt index 9d7f415..3b01e5f 100644 --- a/packages/tf4/tokens.txt +++ b/packages/tf4/tokens.txt @@ -648,3 +648,255 @@ forensic:500:xulek-cikyv-ketax forensic:500:xisis-nicik-fucyx forensic:500:xukal-vinah-lihox forensic:500:xuceb-zevit-rinax +snort:1:xihom-puter-kifex +snort:2:xicop-huzyr-levex +snort:3:xeral-hyfeb-verex +snort:4:xuros-hosoh-symax +snort:5:xocir-damec-vydox +snort:6:xifod-poguz-hupax +snort:7:xudid-dozoz-binex +snort:8:xufat-cukov-vodux +snort:9:xugeb-lynar-sasux +snort:10:xetid-hifug-sarex +snort:11:xufok-feram-kodix +snort:12:xipen-komys-dokax +snort:13:xubal-labap-hocex +snort:14:xuses-pycog-gecex +snort:15:xegon-lehek-sykix +snort:16:xucac-tyhom-hanax +snort:17:xokib-matud-kidux +snort:18:xulav-mipuh-limix +snort:19:xolof-myzom-kisix +snort:20:xevac-refal-macix +snort:21:xivab-fopos-gygox +snort:22:xitin-giveb-fotix +snort:23:xenod-rymes-zinix +snort:24:xedif-hiraz-getax +snort:25:xinig-dasat-dodix +snort:26:xilat-gusib-funex +snort:27:xebef-furef-dybax +snort:28:xirom-tefol-paryx +snort:29:xolet-nulyd-kasux +snort:30:xomog-pupav-fagox +snort:31:xesig-tadeg-sosyx +snort:32:xemat-rasop-tucix +snort:33:xelek-sefaf-bekix +snort:34:xuzeb-mupuv-mybex +snort:35:xukag-lesiv-nycex +snort:36:xides-muzym-perax +snort:37:xotov-veful-latix +snort:38:xudad-dihic-mepyx +snort:39:ximez-pyrel-cucex +snort:40:xicod-guvas-vifax +snort:41:xezil-pugor-tysax +snort:42:xipiz-karyr-bukax +snort:43:xudab-fegev-povax +snort:44:xicot-sosok-tonyx +snort:45:xobaz-muriz-rymox +snort:46:xitap-tavur-durux +snort:47:xubom-nizyr-rakox +snort:48:xodab-ladaz-mubax +snort:49:xutig-cuhyp-levax +snort:50:xopif-zasyt-conyx +snort:51:xucem-hifem-latix +snort:52:xifem-pekev-bakyx +snort:53:xopem-gahas-gilex +snort:54:xifad-ducep-zofax +snort:55:xineh-likuv-gelix +snort:56:xirat-tabel-pacax +snort:57:xubap-gelos-besax +snort:58:xibam-vilad-kihox +snort:59:xirot-dibus-fumox +snort:60:xolap-zesuh-mydex +snort:61:xerop-dacyv-bapex +snort:62:xipet-higoz-fagux +snort:63:xilag-bekuz-tehox +snort:64:xonit-lybir-cepix +snort:65:xibag-mosuv-hagax +snort:66:xokeb-lybid-hytyx +snort:67:xenih-kugat-molix +snort:68:xusor-cazib-curex +snort:69:xesag-vasyz-nylex +snort:70:xopap-vahum-tepox +snort:71:xehet-higob-lutax +snort:72:xican-sihyn-morex +snort:73:xidof-humel-bycyx +snort:74:xodos-kiryh-mydix +snort:75:xovor-zyhat-golox +snort:76:xofit-kehyg-kamyx +snort:77:xerer-rotet-ticix +snort:78:xibog-mahic-cyfux +snort:79:xigoh-kehar-cicex +snort:80:xibed-vicis-gyvix +snort:81:xodav-nuges-vihex +snort:82:xinof-pybar-kupax +snort:83:xucas-tyriv-refix +snort:84:xibik-mivyc-lubex +snort:85:xedaf-muvek-mazyx +snort:86:xebaz-safig-bipax +snort:87:xezev-bidel-morex +snort:88:xepir-ciheb-mosox +snort:89:xesin-zegid-gemax +snort:90:xulag-mocif-pumyx +snort:91:xedos-mesen-dynux +snort:92:ximig-digem-tekux +snort:93:xudip-volir-gityx +snort:94:xenoz-kypoz-pefix +snort:95:xotig-lonyr-katex +snort:96:xuvib-gibar-mosax +snort:97:xesep-zudyl-tylux +snort:98:xisoc-vocub-begix +snort:99:xonop-cabev-nygyx +snort:100:xigaf-limef-bagyx +precog:5:xilet-hekoh-nibox +precog:xidet-buteb-kusox +precog:xemap-saken-nacox +precog:xecis-mivil-somux +precog:xolap-labib-hezax +precog:xuded-bepoc-pymex +precog:xizap-henid-mevux +precog:xikep-fyfir-besux +precog:xolon-lusil-myfox +precog:xiged-mogep-rubix +precog:xedat-sicap-fulax +precog:xiciv-zolic-vozax +precog:xufip-fosen-tecyx +precog:xopam-tycal-zitax +precog:xupom-cohor-hedux +precog:xocif-nyhub-ritux +precog:xitib-nezit-bifax +precog:xozem-vegap-vafax +precog:xokir-pacic-cipax +precog:xelez-pysyv-modix +precog:xehet-famem-datex +precog:10:xulol-byvuh-mufax +fireeye:1:xidip-zocun-homex +fireeye:2:xesec-dodem-lekux +fireeye:3:xutel-tusoc-zyfux +fireeye:4:xukop-zazyf-pogyx +fireeye:5:xemep-karus-guzix +fireeye:6:xosok-kukep-lepex +fireeye:7:xofik-kotad-nasax +fireeye:8:xunor-ruvib-vakux +fireeye:9:xitap-ruvot-gudix +fireeye:10:xetak-vikun-hobux +fireeye:11:xozor-gyfeb-fytix +fireeye:12:xepit-vidil-lyhax +fireeye:13:xireb-cogun-tykux +fireeye:14:xocog-haboh-demyx +fireeye:15:xegis-tabim-hevyx +fireeye:16:xefad-pafus-zudax +fireeye:17:xinad-kekyp-byzox +fireeye:18:xigos-tyrev-lyhex +fireeye:19:xicof-vezur-minyx +fireeye:20:xumip-vadec-mehux +fireeye:21:xezob-zibuv-magux +fireeye:22:xilah-bubec-gatox +fireeye:23:xezef-luhop-sesyx +fireeye:24:xofat-vezav-bapex +fireeye:25:xevog-sibet-kefix +fireeye:26:xutol-sanyz-fumix +fireeye:27:xebom-ragol-nipex +fireeye:28:xinod-zezyb-zosax +fireeye:29:xorod-nyzeb-secux +fireeye:30:xuzaf-zomez-zapux +fireeye:31:xozim-relis-vecex +fireeye:32:xumem-dizuh-kedax +fireeye:33:xugam-zocuk-mudox +fireeye:34:xotad-pymuc-tydex +fireeye:35:xopob-dakyr-vysax +fireeye:36:xifoz-fybic-guvyx +fireeye:37:xuvet-kovyr-gazox +fireeye:38:xubek-ketak-kysux +fireeye:39:xurok-lypuz-kokix +fireeye:40:xoziv-cesyb-kuhox +fireeye:41:xulab-huves-kyfex +fireeye:42:xogal-pidoz-tazax +fireeye:43:ximah-rohul-kusox +fireeye:44:xitof-vepol-cudax +fireeye:45:xumeb-hihom-kavex +fireeye:46:xinok-bozyc-kylux +fireeye:47:xivib-nabos-damyx +fireeye:48:xilos-neniv-lumax +fireeye:49:xunoh-fokuf-gidix +fireeye:50:xudap-tasal-ravix +fireeye:51:xusit-tisom-kityx +fireeye:52:xepem-pudep-segux +fireeye:53:xopis-femym-ribex +fireeye:54:xufel-tipyp-rebex +fireeye:55:xolet-bahuk-zisyx +fireeye:56:xokil-vohoz-pohax +fireeye:57:xetiv-hovaz-canex +fireeye:58:xilil-rozar-huryx +fireeye:59:xokih-zubul-kycyx +fireeye:60:xizog-huded-bomix +fireeye:61:xofag-ducog-dapix +fireeye:62:xokor-vudyr-celax +fireeye:63:xudev-nekyt-dolix +fireeye:64:xefav-vucag-kytox +fireeye:65:xepof-pedof-febyx +fireeye:66:xehiv-zilik-kelax +fireeye:67:xubad-hicuf-suhax +fireeye:68:xonek-sytup-ritix +fireeye:69:xuhag-zihul-didax +fireeye:70:xetob-zuref-cazox +fireeye:71:ximih-cefyv-fulux +fireeye:72:xolek-zomym-rotix +fireeye:73:xenek-bolav-remix +fireeye:74:xisof-dubef-verux +fireeye:75:xihoc-vyhen-myfex +fireeye:76:xogiv-dagam-vukyx +fireeye:77:xetav-muzut-zesux +fireeye:78:xihoz-tapic-sihex +fireeye:79:xikeb-femud-delox +fireeye:80:xunof-gityv-hamix +fireeye:81:xirez-ducor-zecix +fireeye:82:xogov-zopid-necax +fireeye:83:xulek-digaf-fydux +fireeye:84:xemid-ledib-tavex +fireeye:85:xunob-goris-gikyx +fireeye:86:xilem-domiz-fihox +fireeye:87:xebid-tusar-hadux +fireeye:88:xupat-sokob-cadox +fireeye:89:xezih-givad-mesux +fireeye:90:xusic-zoteg-sarex +fireeye:91:xefom-bezus-kytex +fireeye:92:xudan-tihiv-bomax +fireeye:93:xogig-gydok-potyx +fireeye:94:xezak-nicuv-bevyx +fireeye:95:xetif-kazir-misex +fireeye:96:xugis-casyc-kudux +fireeye:97:xukab-hufif-zanax +fireeye:98:xofat-salor-dubox +fireeye:99:xuzef-hyzyp-nolox +fireeye:100:xuzag-pudek-pehux +fireeye:xohoc-ruton-lokux +fireeye:xofor-samub-repyx +fireeye:xekoh-cymof-gopax +fireeye:xefac-nirep-cugex +fireeye:xeced-pucek-namax +fireeye:xelat-vasap-visax +fireeye:xusip-desus-laryx +fireeye:xefiv-nazuc-dutix +fireeye:xesik-dopan-volex +fireeye:xofik-gitov-kabax +fireeye:xivab-tamik-vemox +fireeye:xekin-suzod-dybax +fireeye:xevim-pokic-kigax +fireeye:xifir-zedyp-necix +fireeye:xifif-zohoh-tatex +fireeye:xufip-begyd-dimyx +fireeye:xiheb-dizyb-zynyx +fireeye:xufat-magan-tekix +fireeye:xurek-cufeg-dotyx +fireeye:xicod-zavom-byvux +fireeye:xizim-lilok-gikox +fireeye:xebez-rihet-pisyx +fireeye:xuvis-gebuk-luhux +fireeye:xetir-retah-vohax +fireeye:ximar-liked-gosox +fireeye:xekob-kubok-hylox +fireeye:xucid-bihog-hycax +fireeye:xizet-gagut-kegax +fireeye:xihot-gycer-nifix +fireeye:xesiz-zulys-fopyx From 84e0446cb755114b415fc09c494fb320cad25a92 Mon Sep 17 00:00:00 2001 From: Neale Pickett Date: Wed, 8 Feb 2012 19:30:57 -0700 Subject: [PATCH 2/2] fix ircd configuration --- packages/ircd/service/ircd/ngircd.conf | 3 +++ 1 file changed, 3 insertions(+) diff --git a/packages/ircd/service/ircd/ngircd.conf b/packages/ircd/service/ircd/ngircd.conf index cb21c97..cd3b08d 100644 --- a/packages/ircd/service/ircd/ngircd.conf +++ b/packages/ircd/service/ircd/ngircd.conf @@ -10,3 +10,6 @@ [Operator] Name = oper Password = operpass + OperCanUseMode = yes + NoDNS = yes + NoIdent = yes