On 15-Mar-07, at 1:35 AM, carlopmart wrote:
carlopmart {at} gmail {d0t} com
Are you doing this from the server administration side, or logged
into an ftp server?
I am doing this logged into a ftp server
Ah, you are looking to see a listing of hidden files or regular files
that your user isn't permitted to see? In that case you are actually
looking for an exploit for the ftp server, the server itself, or to
exploit a user account that has elevated permissions.
Details:
[carlos@nazgul iso-images]$ ftp ftp.server.com
Connected to ftp.server.com (1.1.1.1).
220 ACME Technologies Inc.
Name (ftp.server.com:carlos): anonymous
331 Anonymous login ok, send your complete email address as your
password.
Password:
230 Anonymous access granted, restrictions apply.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls -la
227 Entering Passive Mode (1,1,1,1,209,98)
150 Opening ASCII mode data connection for file list
drwxr-xr-x 5 root root 4096 Dec 28 19:38 .
drwxr-xr-x 5 root root 4096 Dec 28 19:38 ..
-rw-r--r-- 1 sgreen sgreen 304 Feb 15 22:13 .bash_logout
-rw-r--r-- 1 sgreen sgreen 191 Feb 15 22:13 .bash_profile
-rw-r--r-- 1 sgreen sgreen 124 Feb 15 22:13 .bashrc
-rw-r--r-- 1 sgreen sgreen 383 Feb 15 22:13 .emacs
-rw-r--r-- 1 sgreen sgreen 120 Feb 15 22:13 .gtkrc
drwxr-xr-x 3 sgreen sgreen 4096 Jun 20 2006 .kde
-rw-r--r-- 1 sgreen sgreen 658 Feb 15 22:13 .zshrc
drwxrwx-wt 267 ftp ftp 12288 Mar 14 21:15 download
lrwxrwxrwx 1 ftp ftp 8 Jun 14 2006 pub -> download
drwxrwx-wx 205 support support 77824 Mar 15 06:30 upload
226 Transfer complete.
ftp> cd download
250 CWD command successful
ftp> ls -la
227 Entering Passive Mode (216,228,148,15,223,76)
150 Opening ASCII mode data connection for file list
226 Transfer complete.
ftp> ls -Al
227 Entering Passive Mode (216,228,148,15,224,175)
150 Opening ASCII mode data connection for file list
226 Transfer complete.
ftp>
As you can see on this screen, I can list root directories but not
contents on subdirectories, but on this subdirectories exists
files ...
Cheers,
Tremaine Lea
Network Security Consultant
Actually what I see is that you can see both directories and hidden
files. The files that begin with a dot are normally hidden from view
when doing a directory listing. What this means in this particular
case is that either you don't have permission to see files/
directories of that type in the download directory, or that no such
files exist there for you to see.
Tremaine
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
|