decfingerd 0.7 - October 3, 1999
http://linux.scdsb.on.ca/~jon/decfingerd/


Thanks for trying the Deception Finger Daemon!


Introduction:
-------------
This program will take place of the original finger service, providing
totally false information to clients. This can be useful to catch people
trying to crack your server, or to just really confuse them. You can define
output for individual users, empty requests, and forward requests to another
system.


Installing:
-----------
At the time of writing this README, the code has been tested with the
following platforms and compilers:

Linux 2.2.7 -- GCC 2.7.2.3
Solaris 2.7 -- EGCS 1.1.1
OpenBSD 2.5 -- GCC 2.8.1

If you're able to compile and run it on other platforms, please let me know!

Run the 'install' script in the directory that was created when the
package was untarred. This *should* compile it, create the directory in
/etc/ for configuration information, and copy the example files to that
directory. Next, you need to add a line in /etc/inetd.conf as the following:
finger stream tcp nowait nobody /usr/sbin/tcpd /usr/sbin/decfingerd

If you have tcp wrappers running, add the following line to /etc/hosts.allow:
decfingerd: ALL

Don't forget to comment out the old finger line if it's not already.

Next, run: 
killall -HUP inetd

You should be all set.


Use:
----
Use of this program is fairly simple. All data files are kept in
/etc/decfingerd/. The format of the files are such:

To create output for when user information is requested (finger
user@yourhost.com), create a file named the same as the user. An example
for root and guest are included in /etc/decfingerd/.

To create output for when a user attempts a forward request to another
machine (finger user@target.com@yourhost.com), create a file in
/etc/decfingerd/ named 'forward.request'.

To create output for when a user attempts an empty request (finger
@yourhost.com), create a file in /etc/decfingerd/ named 'empty.request'. 

Warning:
--------
Deception finger daemon was designed for outside users trying to look in.
Because of this, it is very easy for local users to see that the finger
service is not a real one. It also may get them frustrated when they
finger themselves and it says there's no such user. I suggest this not be
used on a system with many users.

Author:
-------
Jon Beaton, jonb@softhome.net
	    jon@linux.scdsb.on.ca

Website: 
http://linux.scdsb.on.ca/~jon/decfingerd/

Please send me any bug reports, or reports of strange activity. Also, if
you have any ideas or suggestions for future versions, let me know, and
I'll see what I can do. Have fun lamer tracking.
