Date: Mon, 10 Jun 1996 01:04:44 -0500 (CDT) From: Jeff Hupp <jhupp@black.gensys.com> To: rgrimes@GndRsh.aac.dev.com (Rodney W. Grimes) Cc: taob@io.org, freebsd-security@FreeBSD.ORG Subject: Re: setuid root sendmail vs. mode 1733 /var/spool/mqueue? Message-ID: <199606100604.BAA02266@black.gensys.com> In-Reply-To: <199606100512.WAA15320@GndRsh.aac.dev.com> from "Rodney W. Grimes" at Jun 9, 96 10:12:05 pm
next in thread | previous in thread | raw e-mail | index | archive | help
Rodney W. Grimes shaped electrons to form:
: > On Sun, 9 Jun 1996, Rodney W. Grimes wrote:
: > >
: > > Denial of service attack:
: > > cat /dev/zero >/var/spool/mqueue/onebigwhole bs=32b
: > >
:
: On mail hub servers I usually make /tmp and /var/tmp a seperate partition
: to avoid this denial of service attack, makeing /var/spool/mqueue 1733
: would open it back up :-(.
:
: It is impossible to totally close, as the user can mail himself or someone
: else a large file, or lots of smaller files :-(.
This can be closed with the quota mods to mail.local and sendmail.cf
Any ISP that doesn't do this is leaving themselves wide open to attack by
both the hostie and ignorant.
--
Jeff Hupp | Happiness is: | PGP Public Key
<JHupp@Gensys.com> | Running FreeBSD. | available at
<http://Gensys.com/>; | Help stamp out Redmond syndrome! | http://gensys.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606100604.BAA02266>