Netcat is entirely my own creation, although plenty of other code was used as examples. You have to understand why you might need this and turn on the #define yourself. Thus, doing "rservice joe joespass pwd nc target exec" should return joe's home dir if the password is right, or "Permission denied." Plug in a dictionary and go to town. You can freely suspend out of an interactive connection and resume. Cisco routers are known to have a "dead time" in between icmp responses about unreachable UDP ports, so a fast scan of a cisco will show almost everything "open".

On the flip side, binding to localhost and sending packets to some other machine doesn't work as you'd expect - they go out with the source address of the sending interface instead. You can either tell netcat to drop the connection, or perhaps run another copy of itself to relay to your actual X server on "localhost". You will get more out of UDP connections if standard input is fed from a source of data that looks like various kinds of server requests. Nonetheless, at this point I think of netcat as my tcp/ip swiss army knife, and the numerous companion programs and scripts to go with it as duct tape. Use "nc -t" in place of telnet, and daemons that try to ask for things like user and term environment variables will get no useful answers, as they otherwise would from a more recent telnet program. The reader may notice that the section that does DNS lookups seems much gnarlier and more confusing than other parts.

The interface probably has to be UP before this works; some slip versions need a far-end address before this is true. If the system supports IP socket options, netcat will attempt to retrieve any such options from an inbound connection and print them out in hex. Although netcat claims that an outgoing UDP connection is "open" immediately, no data is sent until something is read from standard input.

This allows for a one-off experimental simulation of some service, without having to screw around with. Netcat is now smart enough to pick out the first line and build the argument list, and send any remaining data across the net to one or multiple ports. Duct tape of course has a light side and a dark side and binds the universe together, and if I wrap enough of it around what I'm trying to accomplish, it *will* work.