[8146] in bugtraq
Re: Possible DoS in rsh
daemon@ATHENA.MIT.EDU (Nick Andrew)
Thu Oct 8 23:54:52 1998
Date: Fri, 9 Oct 1998 10:08:46 +1000
Reply-To: nick@ZETA.ORG.AU
From: Nick Andrew <nick@ZETA.ORG.AU>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: Your message of "Tue, 06 Oct 1998 15:43:01 -0400."
<199810061943.PAA28852@bajor.ici.net>
In message <199810061943.PAA28852@bajor.ici.net>, Shivan Dragon writes:
>I don't know if this has been posted before so here it is. If you link your
>.rhosts file (or hosts.equiv?) to /dev/zero. When you try to rsh it tried to
>read /dev/zero that is of infinate length.
Programs (esp. daemons) which run as root should refuse to read control
files which are symlinks (and home directories should not be on the same
partition as /dev!).
A similar DoS may be possible by symlinking .forward, .qmail, .plan etc.
Nick.
