[6800] in bugtraq
Re: pingflood.c
daemon@ATHENA.MIT.EDU (Theo de Raadt)
Mon May 18 15:47:45 1998
Date: Mon, 18 May 1998 12:46:16 -0600
Reply-To: Theo de Raadt <deraadt@CVS.OPENBSD.ORG>
From: Theo de Raadt <deraadt@CVS.OPENBSD.ORG>
X-To: "Aggelos P. Varvitsiotis" <avarvit@CC.ECE.NTUA.GR>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: Your message of "Mon, 18 May 1998 13:39:07 +0300."
<199805181039.NAA19336@cc.ece.ntua.gr>
> BTW, how many setuid programs are there that will catch various
> signals and will behave "not-as-expected" when forked off by a
> signal-bomber parent process, such as pingflood?
Unlike seemingly everone else in this thread, who are very busy trying
to patch ping for a problem which it is obvious many other programs in
the source tree will also encounter, Aggelos has taken the first step
and used started thinking about the further consequences.
Yes, this is a much bigger problem. Yes, other parts of the system
are also affected by this and similar problems. For all kinds of
signals.
For more information on how I have fixed this problem, due to a
conversation with David Holland a couple months back about this basic
problem, see both www.openbsd.org/security.html#23 and
www.openbsd.org/errata.html#kill
