Hi,

i've read about such way of backdooring(services and inetd.conf). A very good way to backdoor a system. But let's say if someone portscans the host and checks the port the backdoor is on, anyone could enter the system. So is there some way not to let everyone access the system through the backdoor ? I'm talking about some way of authentication. E.g 'telnet host port' and then it asks you for a password. If the pasword matches, you get a /bin/bash (or whatever you've wrote in inetd.conf).

So is there such script/prog written... ?

Thanks in advance

use pam authentication

using /etc/services & /etc/inetd.conf for backdooring is like using autoexec.bat on windows

they are monitored on my systems, and if theres any new entry i know everthing i have to know to disabe that damn backdoor. try another way, this one almost useless

/etc/inetd.conf

It tells a unix machine what program to run, when a someone connect to a port.

Example: (not right line, only to help understand it)
- When someone connect to port 21, start ftp daemon

I think there should be some ways, but not in INETD itself.You need some wrapper, behind the INETD.

but after all I'm agree w/ niemic.

Check out this post on an example of an ineted backdoor : http://www.governmentsecurity.org/forum/in...?showtopic=3480

Some distributions like mandrake however use xinetd these days...so you'll need a different type of backdoor..a good example is the one found at http://roothack.org/framed.php?url=archive...netd-backdoor.c

Patch it...