The Finger service allows remote
users to view the output equivalent to the show users [wide ] command. The information displayed includes the processes
running on the system, the line number, the connection name, the idle time, and the terminal location. Finger protocol uses port 79. This information can be very useful for an intruder in the reconnaissance phase, because it gathers information about
remote hosts and networks by examining such network services. As with all other minor services, the Finger service should disabled if not required in the network.
By default, Finger protocol is disabled on all IOS versions beginning with Cisco IOS Software Version 12.1(5) and 12.1(5)T and
later. (Finger protocol was enabled by default in previous versions.) If this service has been enabled, it can be disabled using no ip finger or the no service finger command from the global configuration mode.
Identification (auth) Protocol
Identification (auth) protocol (Identd) allows any host to ask the router to identify itself. Identd can be used as a reconnaissance
tool.
By default, identification support is disabled on all IOS versions. If this service has been enabled, it can be disabled using the ip identd command from the global configuration mode.
Pages:
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141