Possible DoS in rsh

From: Shivan Dragon (shivanat_private)
Date: Tue Oct 06 1998 - 12:43:01 PDT

Next message: NACS Security Administrator: "buffer overflow in dbadmin"

Previous message: Oliver Friedrichs: "Re: linux 2.0.35 ip aliasing with aliased hwaddr"
Next in thread: Nick Andrew: "Re: Possible DoS in rsh"
Reply: Nick Andrew: "Re: Possible DoS in rsh"
Reply: Henrik Nordstrom: "Re: Possible DoS in rsh"
Reply: Kragen: "Re: Possible DoS in rsh"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I don't know if this has been posted before so here it is. If you link your
.rhosts file (or hosts.equiv?) to /dev/zero. When you try to rsh it tried to
read /dev/zero that is of infinate length. I've tried to rsh in and I get
timed out after 60 seconds. Well lets change the situation around a bit. While
this file linked to /dev/zero , I tried to check mail via IMAP (e.g. pine). Well
all my processes zombied out and for each process the mail servers load climbed
a couple points. I didn't try to spawn any more IMAP processes (after 3), but
I'm pretty sure if I did the server's load could have been through the roof.

Next message: NACS Security Administrator: "buffer overflow in dbadmin"
Previous message: Oliver Friedrichs: "Re: linux 2.0.35 ip aliasing with aliased hwaddr"
Next in thread: Nick Andrew: "Re: Possible DoS in rsh"
Reply: Nick Andrew: "Re: Possible DoS in rsh"
Reply: Henrik Nordstrom: "Re: Possible DoS in rsh"
Reply: Kragen: "Re: Possible DoS in rsh"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:18:52 PDT