Written by 0xttfx
on December 27, 2023

Protect Your Reto - How to prevent Finger Injection Attack

Protect Your Reto

A way to prevent a Finger Injection attacks from security researcher Abu_c_ta_i

Dependencies

FreeBSD
IPFW User interface for firewall, traffic shaper, packet scheduler, in-kernel NAT.

Protect You Reto Logo

#!/bin/sh
# Faioli a.k.a: 0xttfx.
# An implementation of Protect Your Reto to prevent Finger Injection Attack
# from security researcher @Abu_C_tai

cu=/dev/OrificioRugosoInfraLombar
cmd=/sbin/ipfw -q add
deny="deny log logamount 1000"

${cmd} ${deny} tcp from any to any tcpflags syn,fin
${cmd} ${deny} tcp from any to any tcpflags urg,psh
${cmd} ${deny} tcp from any to any tcpflags fin,!ack
${cmd} ${deny} tcp from any to any tcpflags psh,!ack
${cmd} ${deny} tcp from any to any tcpflags rst,!ack
${cmd} ${deny} tcp from any to any tcpflags syn,rst
${cmd} ${deny} tcp from any to any tcpflags fin,rst
${cmd} ${deny} udp from any to any iplen 0-39 in
# protect your reto
${cmd} ${deny} all from any to me dst-port ${cu}

Top