Re: bugtraq inetd DoS exploit *PFFT*

From: Nick Slager (nicks@albury.net)
Date: 02/27/01

• Next message: jeff: "vlan"
• Previous message: Marius Strom: "Re: bugtraq inetd DoS exploit *PFFT*"
• In reply to: Marius Strom: "Re: bugtraq inetd DoS exploit *PFFT*"
• Next in thread: ryanb: "Re: bugtraq inetd DoS exploit *PFFT*"
• Reply: ryanb: "Re: bugtraq inetd DoS exploit *PFFT*"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 27 Feb 2001 11:51:51 +1100
From: Nick Slager <nicks@albury.net>
To: Marius Strom <marius@marius.org>

Thus spake Marius Strom (marius@marius.org):

>On Tue, Feb 27, 2001 at 10:50:17AM +1100, Nick Slager wrote:
>>
>> The inetd shipped with FreeBSD appears vulnerable to the inetd DoS
>> exploit posted on bugtraq.
>>
>> ...
>>
>> As a workaround, start inetd with the -C flag.
>
> This is not a "vulnerability", per se. inetd(8) will suspend a service
> for 10 minutes if a certain amount of them are started within a certain
> time, hence your log message. Not to deny that it's a limited DoS
> condition, but it was programmed that way.
>
> To update this on a per-service basis (say, your pop3 daemon takes lots
> of hits under normal traffic) do the following:

[ snip inetd.conf entry and man page quote ]

erm, thanks, I do realise this. The advantage of the -C flag is being
able to specify the maximum times a given service can be invoked from a
single IP, ensuring services are still available for other clients.

Nick

-- 
Nick Slager		| Quidquid latine dictum
nicks@albury.net	| sit, altum viditur.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: jeff: "vlan"
• Previous message: Marius Strom: "Re: bugtraq inetd DoS exploit *PFFT*"
• In reply to: Marius Strom: "Re: bugtraq inetd DoS exploit *PFFT*"
• Next in thread: ryanb: "Re: bugtraq inetd DoS exploit *PFFT*"
• Reply: ryanb: "Re: bugtraq inetd DoS exploit *PFFT*"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages 11 years of inetd default insecurity? ... we all blame Microsoft in insecure default configuration... ... Saint_Byte reported DoS vulnerability in wu-ftp. ... Any system shipped with network daemons launched through inetd (FreeBSD, ... remote attacker can establish as much connections per ... (Bugtraq) FreeBSD Security Advisory: FreeBSD-SA-01:11.inetd [REVISED] ... Corrected: 2000-11-25 (FreeBSD 4.2-STABLE) ... The inetd ident server is an implementation of the RFC1413 ... All released versions of FreeBSD prior to the correction date ... The inetd internal ident server is not enabled by default. ... (FreeBSD-Security) Re: bugtraq inetd DoS exploit *PFFT* ... This is not a "vulnerability", ... > The inetd shipped with FreeBSD appears vulnerable to the inetd DoS ... Professional Geek/Unix System Administrator ... with "unsubscribe freebsd-security" in the body of the message ... (FreeBSD-Security) FreeBSD Security Advisory: FreeBSD-SA-01:11.inetd [REVISED] ... Corrected: 2000-11-25 (FreeBSD 4.2-STABLE) ... The inetd ident server is an implementation of the RFC1413 ... All released versions of FreeBSD prior to the correction date ... The inetd internal ident server is not enabled by default. ... (FreeBSD-Security) FreeBSD Security Advisory: FreeBSD-SA-01:11.inetd ... The inetd ident server is an implementation of the RFC1413 ... Upgrade the vulnerable FreeBSD system to 3.5-STABLE or 4.2-STABLE ... Verify the detached PGP signature using your PGP utility. ... (FreeBSD-Security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint