From owner-freebsd-ports Mon Nov 4 0: 0:19 2002 Delivered-To: freebsd-ports@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1E00837B401 for ; Mon, 4 Nov 2002 00:00:17 -0800 (PST) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2DB9343E7B for ; Mon, 4 Nov 2002 00:00:16 -0800 (PST) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.6/8.12.6) with ESMTP id gA480Gx3090788 for ; Mon, 4 Nov 2002 00:00:16 -0800 (PST) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.6/8.12.6/Submit) id gA480GxV090787; Mon, 4 Nov 2002 00:00:16 -0800 (PST) Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D1A4A37B401 for ; Sun, 3 Nov 2002 23:52:15 -0800 (PST) Received: from mgw-x1.nokia.com (mgw-x1.nokia.com [131.228.20.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3DA4A43E3B for ; Sun, 3 Nov 2002 23:52:14 -0800 (PST) (envelope-from jylitalo@namu.ntc.nokia.com) Received: from esvir05nok.ntc.nokia.com (esvir05nokt.ntc.nokia.com [172.21.143.37]) by mgw-x1.nokia.com (Switch-2.2.1/Switch-2.2.0) with ESMTP id gA47pkO24969 for ; Mon, 4 Nov 2002 09:51:47 +0200 (EET) Received: from esebh003.NOE.Nokia.com (unverified) by esvir05nok.ntc.nokia.com (Content Technologies SMTPRS 4.2.5) with ESMTP id for ; Mon, 4 Nov 2002 09:52:12 +0200 Received: from namu.ntc.nokia.com ([172.21.200.21]) by esebh003.NOE.Nokia.com with Microsoft SMTPSVC(5.0.2195.5329); Mon, 4 Nov 2002 09:52:12 +0200 Received: from namu.ntc.nokia.com (localhost [127.0.0.1]) by namu.ntc.nokia.com (8.12.3/8.11.6) with ESMTP id gA47qB7r051539 for ; Mon, 4 Nov 2002 09:52:12 +0200 (EET) (envelope-from jylitalo@namu.ntc.nokia.com) Received: (from jylitalo@localhost) by namu.ntc.nokia.com (8.12.3/8.12.3/Submit) id gA47qAsp051538; Mon, 4 Nov 2002 09:52:10 +0200 (EET) Message-Id: <200211040752.gA47qAsp051538@namu.ntc.nokia.com> Date: Mon, 4 Nov 2002 09:52:10 +0200 (EET) From: Juha Ylitalo Reply-To: Juha Ylitalo To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Subject: ports/44868: sysutils/cfengine2: cfservd dies fails if getaddrinfo if DNS lookup fails. Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 44868 >Category: ports >Synopsis: sysutils/cfengine2: cfservd dies fails if getaddrinfo if DNS lookup fails. >Confidential: no >Severity: critical >Priority: high >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Mon Nov 04 00:00:15 PST 2002 >Closed-Date: >Last-Modified: >Originator: Juha Ylitalo >Release: FreeBSD 4.6.1-RELEASE-p1 i386 >Organization: >Environment: System: FreeBSD kandu.hel.nic.noklab.net 4.6-RELEASE-p1 FreeBSD 4.6-RELEASE-p1 #0: Mon Jul 8 12:00:57 EEST 2002 root@kandu.hel.nic.noklab.net:/usr/obj/usr/src/sys/DBRACKPOMI i386 Port: sysutils/cfengine2-2.0.3 >Description: Nov 4 09:30:01 kandu kandu.hel.nic.noklab.net[68142]: Unable to lookup arieli.hel.nic.noklab.net Nov 4 09:30:01 kandu kandu.hel.nic.noklab.net[68142]: getaddrinfo: Undefined error: 0 Nov 4 09:30:01 kandu /kernel: pid 68142 (cfservd), uid 0: exited on signal 11 (core dumped) Appearantly if host, which DNS name can't be verified, tries to connect cfservd, it will kill cfservd instance. With this kind of failure, its far too easy to do DoS against my cfservd, which is responsible for all other boxes configuration. >How-To-Repeat: Log pretty much says it all... >Fix: >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message