[31483] in bugtraq
Re: 11 years of inetd default insecurity?
daemon@ATHENA.MIT.EDU (Dan Stromberg)
Mon Sep 8 18:26:09 2003
From: Dan Stromberg <strombrg@dcs.nac.uci.edu>
To: Thamer Al-Harbash <tmh@whitefang.com>
Cc: Dan Stromberg <strombrg@dcs.nac.uci.edu>, 3APA3A <3APA3A@SECURITY.NNOV.RU>,
bugtraq@securityfocus.com
In-Reply-To: <Pine.BSF.4.51.0309072145220.54030@helena.whitefang.com>
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-j1g3qf90jvZQVAJtKWh4"
Message-Id: <1063050294.23431.154.camel@tesuji.nac.uci.edu>
Mime-Version: 1.0
Date: 08 Sep 2003 12:44:55 -0700
--=-j1g3qf90jvZQVAJtKWh4
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Sun, 2003-09-07 at 18:46, Thamer Al-Harbash wrote:
> On Sat, 6 Sep 2003, 3APA3A wrote:
>=20
> > Dear bugtraq@securityfocus.com,
> >
> > Well, we all blame Microsoft in insecure default configuration... Isn'=
t
> > it time to clean outdated code in Unix?
>=20
> This has been a known problem for quite a while. In fact
> D. J. Bernstein already solved it with tcpserver:
>=20
> http://cr.yp.to/ucspi-tcp.html
>=20
> If you look at the bottom he points out pretty much what you
> pointed out.
So DJB's program basically has a large listen queue, and goes into
queue-only mode after 40 concurrent connections?
If that's the case, then there's still a DOS - just fill the listen
queue with so much stuff that connections aren't serviced for a long
time.
--=20
Dan Stromberg DCS/NACS/UCI <strombrg@dcs.nac.uci.edu>
--=-j1g3qf90jvZQVAJtKWh4
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQA/XNw2o0feVm00f/8RApQTAJ0eBWm22bEzvvK0OygACceOpBKvCgCeP6Qa
z2hCaNNB5pVHl6lluQ5QH9g=
=S27F
-----END PGP SIGNATURE-----
--=-j1g3qf90jvZQVAJtKWh4--
