[2108] in linux-security and linux-alert archive
[linux-security] Re: portmap vulnerability?
daemon@ATHENA.MIT.EDU (Matt)
Sat Dec 12 04:01:53 1998
To: linux-security@kochab.cv.nrao.edu
From: Matt <panzer@dhp.com>
Date: 12 Dec 1998 06:32:41 GMT
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
In mail.linux.security Tony Nugent <Tony.Nugent@usq.edu.au> wrote:
: To make this post worthwhile, where is a snippit out of my own
: /etc/hosts.deny file...
: " | /bin/mail -s "$(uname -n) wrappers\: %d refused for %c" \
: root@localhost ) &
It was very tempting send a pile of spoofed packets into your network to
generate a huge load of email, filling up your mail spool and generating a
nice load on your system. :)
As tempting as this type of logging usually is, perhaps you want to dump
it to a file, instead of having every connection attempted emailed to you,
generating a handful of proccesses while it does so.
[mod: Some remarked that things like "%u" are "client controlled" and
could be used to exploit Tony's system. The manual however claims:
Characters in % expansions that may confuse the shell
are replaced by underscores.
so that should be OK. -- REW]
--
-Matt Drown -- Privacy, Anonyminity, & Security -- DataHaven Project
panzer@dhp.com -- Shell and Web accounts -- http://www.dhp.com/
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null
