# # Cctt - Covert Channel Tunneling Tool v0.1.8 # Copyright (C) 2002,2003 Simon Castro - scastro@entreelibre.com # $Id: cctt_srv.cf,v 1.8 2003/08/29 10:11:51 simsim Exp $ # # ============================================================================== # This file is part of CCTT - Covert Channel Tunneling Tool v0.1.8 (C) Simon # Castro. # CCTT is free software; you can redistribute it and/or modify it under the # terms of the GNU General Public License as published by the Free Software # Foundation; either version 2 of the License, or (at your option) any later # version. # CCTT is distributed in the hope that it will be useful, but WITHOUT ANY # WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR # A PARTICULAR PURPOSE. See the GNU General Public License for more details. # You should have received a copy of the GNU General Public License along with # CCTT; if not, write to the Free Software Foundation, Inc., 59 Temple Place, # Suite 330, Boston, MA 02111-1307 USA # ============================================================================== # # 27/07/2003 # # Configuration file for server. # Take a look at docs/confs/srv_*.conf # # Protocol used between client and server or client and proxy #PROTOCOL=tcp # Allowed proxying list : If the client use proxy_mode, Server checks that the # client proxying request is set #PROXY_MODE_LIST=ssh:127.0.0.1:22 #PROXY_MODE_LIST=http:127.0.0.1:80 #PROXY_MODE_LIST=smtp:10.1.1.7:25 #PROXY_MODE_LIST=pop:10.1.1.7:110 # Set the identification type and key must be equal in server and client # configuration files ! # set to : clear_ident or basic_ident #IDENT=basic_ident #IDENT_KEY=simsim # Shell location and command to execute if client asks shell. Set to /bin/false, # /sbin/nologin etc... and the server wont give a shell #SRV_SHELL_LOC=/usr/local/bin/bash #SRV_SHELL_CMD=bash # Proxy_only configuration. Server only accept proxy_mode connections (drops # shell and reverse-shell requests) et don't use interactive mode. With this # directive set, you can use the server as a daemon. #PROXY_ONLY=ON # If executed with superuser priviledges, this directive allows the server to # chroot itself after initialization. #PERM_CHROOT=cage # If executed with superuser priviledges, this directive allows the server to # set its gid/uid after initialization (and eventually chroot) to the one of the # defined user. #PERM_USER_GROUP=user # If a client cannot pass the identification stage, the content of the specified # file is sended before we close the socket. #FAKE_WEBSERVER=banner_file.txt # Connections quiet since %d msecs are killed. The next value is used by default # in the include/configuration.h file #KILL_QUIET_DEL=1000000 # Connections quiet since %d msecs with the close_flag set are killed. The next # value is used by default in the include/configuration.h file #KILL_QUIET_DEL_CF=500000 # ============================================================================== ### Following options are mandatory in all HTTP modes # This is the uri the server will match to search for valid datas #HTTP_MOD_URI=/cgi-bin/cctt.cgi # This is the error page the server will send if the uri nor fake url is # matched. #HTTP_MOD_SRV_ERROR_PAGE=error_page.txt # ============================================================================== ### Following options are optionals in HTTP modes ## The next two padding directives must have their counterpart in the CLIENT ## part. # Datas of this file are padded at the top of datas (with or without #HTTP_MOD_CL_BOT_PAD) (only in http_post mode) #HTTP_MOD_CL_TOP_PAD=top_padding_server.txt # Datas of this file are padded at the bottom of datas (with or without #HTTP_MOD_CL_TOP_PAD) (only in http_post mode) #HTTP_MOD_CL_BOT_PAD=bottom_padding_server.txt ## The next two padding directives are related to the one configured in the ## CLIENT part. # The top padding size in bytes (in http_post mode only). It must be equal to # the HTTP_MOD_CL_TOP_PAD configured in the client part ! (with or without # HTTP_MOD_SRV_BOT_PAD) #HTTP_MOD_SRV_TOP_PAD=42 # The bottom padding size in bytes (in http_post mode only). It must be equal to # the HTTP_MOD_CL_BOT_PAD configured in the client part ! (with or without # HTTP_MOD_SRV_TOP_PAD) #HTTP_MOD_SRV_BOT_PAD=24 # Set this to as many fake requests files as you want. #HTTP_MOD_SRV_FAKE_URLS=index.html #HTTP_MOD_SRV_FAKE_URLS=images/image.jpg