From owner-freebsd-questions  Tue Nov 25 17:02:21 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id RAA24682
          for questions-outgoing; Tue, 25 Nov 1997 17:02:21 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA24670
          for <questions@freebsd.org>; Tue, 25 Nov 1997 17:02:15 -0800 (PST)
          (envelope-from shovey@buffnet.net)
Received: from buffnet5.buffnet.net (shovey@buffnet5.buffnet.net [205.246.19.14]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id UAA12869; Tue, 25 Nov 1997 20:01:16 -0500 (EST)
Date: Tue, 25 Nov 1997 20:01:15 -0500 (EST)
From: Steve Hovey  <shovey@buffnet.net>
To: "James D. Butt" <jbutt@mwci.net>
cc: Doug White <dwhite@resnet.uoregon.edu>, questions@freebsd.org
Subject: Re: Land DOS Attack.
In-Reply-To: <Pine.BSD/.3.91.971125184438.3231B-100000@subcellar.mwci.net>
Message-ID: <Pine.BSI.3.95.971125200052.21827Q-100000@buffnet5.buffnet.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk



On Tue, 25 Nov 1997, James D. Butt wrote:

> > > On Fri, 21 Nov 1997 jbutt@subcellar.mwci.net wrote:
> > > 
> > > > 	Does anyone here know for sure it 2.2.2-RELEASE is vulnrable to the 
> > > > land.c DOS attack? It so is there a patch?
> > > 
> > > I believe so.  In any case a "quick fix hack" has been committed to
> > > -CURRENT and -STABLE.  A security advisory should follow shortly.
> > 
> > I couldnt get that land.c jobber to crash anything.
> 
> It makes FreeBSD-2.2.5-Release go comatose.
> 

Maybe if its compiled under something other than freebsd - I grabbed the
source and compiled it and nothing..