[8086] in bugtraq
Re: inetd vulnerability
daemon@ATHENA.MIT.EDU (Chris Conner)
Tue Sep 29 20:43:28 1998
Date: Tue, 15 Sep 1998 19:18:54 -0400
Reply-To: Chris Conner <chris@NIRVANA.NET>
From: Chris Conner <chris@NIRVANA.NET>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.LNX.3.96.980929170256.14749C-100000@warped.nirvana.ne t>
As far as I can see, all this script does is make a large number of
connections to a single port. The inetd man pages allow you to put an
argument after 'wait' or 'nowait' in inetd.conf for any service. (wait.256)
this allows 256 connections in a minute, compared to the default 40. This
script will still kill the port when it is set to 256, so maybe someone can
hack something up to make inetd allow more than 256 connections in under a
minute?
Chris
At 05:04 PM 9/29/98 -0400, you wrote:
>I was talking to someone on irc last night after I made my post about the
>mountd exploit and they said they had a exploit that would kill inetd.
>I did not get the stuff but I had him try it on 3 of my linux systems and
>it did work..
>morex .-
>http://morex.net
>http://www.worldnetworks.net
>
>
