Re: Novell Pandora Hack - Filling the SYS Volume

From: Sam Morris (Samuel_A._Morrisat_private)
Date: Tue Apr 13 1999 - 12:38:27 PDT

Next message: M. Adam Kendall: "Re: Possible security hole"

Previous message: routeat_private: "Re: ARP problem in Windows9X/NT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

You can put a limit on the maximum size of the error log file (SYS$LOG.ERR)
though..... This will stop it from filling the volume.

Sam




Of course spoofing the source of a Pandora attack can have other effects
with these security measures in place, since you could fill up the SYS
volume (stopping all server processing) with "invalid security signature"
messages. There is no "last message repeated 200,000 times" log entry in
Netware....

Next message: M. Adam Kendall: "Re: Possible security hole"
Previous message: routeat_private: "Re: ARP problem in Windows9X/NT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:42:21 PDT