0xor1day

Protocols and Servers

3 min read

  1. Telnet: application layer protocol used to connect to a virtual terminal of another computer -access console to run programs, start batch processes and perform system admin tasks remotely -login using username and password -not encrypted -uses telnet protocol to listen for incoming connections on port 23 eg: telnet [IP] -not reliable for access to remote system bc all data is sent in clear text

  2. HTTP: protocol used to transfer web pages. -connects to the webserver and uses HTTP to request HTML pages and images, submit forms, upload files etc -sends and receives data as cleartext (not encrypted) -need HTTP server(webserver) and an HTTP client (web browser) to use HTTP protocol -Three Popular HTTP servers (Apache, Internet Information Services(IIS), Nginx) -Web browsers (Chrome, Edge, Firefox, Safari)

  3. FTP: File Transfer Protocol -created to make transfer of files between different computers efficient -sends and receives data as cleartext -default port 21

  4. connect to an FTP server using Telnet client

  5. provide user and pass usefull commands:

  • ‘STAT’ - provide some added information
  • ‘SYST’ - shows the system type of the target
  • ‘PASV’ - switches mode to passive
  • ‘TYPE A’ - switches file transfer to ASCII
  • ‘TYPE I’ - switches file transfer mode to binary Active mode - data is sent over a separate channel originating from the FTP server’s port 20 Passive mode - data is sent over a separate channel originating from an FTP client’s port above port 1023 After logged in: ‘ftp>’ - execute various commands ‘ls’ - list files ‘get [FILE NAME]’ - client and server extablish another channel for file transfer

  1. SMTP: Simple Mail Transfer Protocol -Email system can be used to allow local users to exchange emails with each other without access to the internet -multiple components

  2. Mail Submmision Agent (MSA) - has email to be sent, connects to MUA to send message, checks for errors before passing to MTA

  3. Mail Transfer Agent (MTA) - send the emamil message to MTA of the recipient

  4. Mail Delivery Agent (MDA) - passed to MDA to deliver to email client

  5. Mail User Agent (MUA) - agent send the mail Two protocols

  6. Simple Mail Transfer Protocol (SMTP)

  7. Post Office Protocol Version 3 (POP3) or Internet Message Access Protocol (IMAP) SMTP - communicate using an MTA server -cleartext -default port 25 by default steps:

  8. telnet [IP] 25

  9. helo [hostname]

  10. mail from:

  11. rcpt to:

  12. data

  13. -ENTER ’.’ Enter to send

  14. Post Office Protocol 3 (POP3) -used to download email messages from a mail delivery agent (MDA) -default port 110 -steps:

  15. telnet [IP] 110

  16. USER [username]

  17. PASS [password]

  18. ‘STAT’ —reply +OK nn mm— nn: number of email messages in the inbox mm: size of the inbox in octates (byte)

  19. ‘LIST’ -list of messages on server-

  20. ‘RETR [number]’ —retrive message from list—

  21. Internet Message Access Protocol (IMAP) -more synchronized than POP3 -keep email syncronized across multiple devices and mail clients -default port: 143 -IMAP requires each command to be preceded by a random string to be able to track the reply, c1, c2, etc -List mail folders: ‘LIST "" ”*”’ -steps:

  22. telnet [IP] 143

  23. c1 LOGIN [username] [password]

  24. c2 LIST "" ”*”

Protocol TCP Port Application(s) Data Security FTP 21 File Transfer Cleartext HTTP 80 Worldwide Web Cleartext IMAP 143 Email (MDA) Cleartext POP3 110 Email (MDA) Cleartext SMTP 25 Email (MTA) Cleartext Telnet 23 Remote Access Cleartext

Graph View