Re: local telnetd DoS

From: Henrik Nordstrom (hnoat_private)
Date: Sat Sep 11 1999 - 02:18:47 PDT

Next message: nm: "Re: fixing all buffer overflows --- random magin numbers"

Previous message: Kerb: "CGI security"
Maybe in reply to: Zo0mer: "local telnetd DoS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Zo0mer wrote:
>
> Hi,i found local DoS that Crash telnetd (tested on Slackware 4.0, RH 5.2)
> type
> telnet localhost | telnet localhost | telnet localhost ...... about 50 times
> result will be 'Connection Refused' , telnetd crash.

Sounds very much like inetd service respawn rate limitation. The default
rate limit is usually something like 40 accesses/minute. See your inetd
documentation for exact value of the default limit and how it may be
tuned.

The purpose of this limit is to limit the DOS attack to only the service
attacked and not bring down the whole machine by resource exhaustion
(memory, processes, CPU).

--
Henrik Nordstrom

Next message: nm: "Re: fixing all buffer overflows --- random magin numbers"
Previous message: Kerb: "CGI security"
Maybe in reply to: Zo0mer: "local telnetd DoS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:03:14 PDT