Date: Tue, 4 Dec 2001 09:39:58 -0800 From: "Riley J. McIntire" <rileyjmc@pacbell.net> To: "FreeBSD Questions" <freebsd-questions@FreeBSD.org> Subject: icmp dos attack? sshd core dump Message-ID: <NCBBLBILEPCHLFJAPIIPIEAGKFAA.rileyjmc@pacbell.net>
next in thread | raw e-mail | index | archive | help
Greetings: This just showed up in a security check output log: > icmp-response bandwidth limit 240/200 pps > icmp-response bandwidth limit 213/200 pps snip pages of this then > pid 49374 (sshd), uid 0: exited on signal 11 (core dumped) > pid 49375 (sshd), uid 0: exited on signal 11 (core dumped) snip > pid 49391 (sshd), uid 0: exited on signal 11 (core dumped) > pid 49394 (sshd), uid 0: exited on signal 11 (core dumped) > pid 49396 (sshd), uid 0: exited on signal 10 (core dumped) > pid 49397 (sshd), uid 0: exited on signal 10 (core dumped) snip > pid 49465 (sshd), uid 0: exited on signal 10 (core dumped) > pid 49466 (sshd), uid 0: exited on signal 10 (core dumped) Note the change from a sig 11 to 10. A DOS attack? The machine is up, I can connect via ssh, and I'm a bit at a loss of what, if anything, to do about this? Thanks, Riley "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." Benjamin Franklin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NCBBLBILEPCHLFJAPIIPIEAGKFAA.rileyjmc>