Date: Sat, 20 Apr 2013 14:26:10 -0300 From: Marcelo Gondim <gondim@bsdinfo.com.br> To: freebsd-stable@freebsd.org Subject: Re: Possible DoS in mpd 5.6 pppoe server Message-ID: <5172CFB2.3010708@bsdinfo.com.br> In-Reply-To: <5172BDDD.4010509@rdtc.ru> References: <5172965A.9080600@bsdinfo.com.br> <5172BDDD.4010509@rdtc.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Em 20/04/13 13:10, Eugene Grosbein escreveu: > On 20.04.2013 20:21, Marcelo Gondim wrote: >> Hi all, >> >> I'm doing tests with mpdas pppoeserver. Tried to simulate an attack of >> 1000 connections using an incorrect login and after a certain time can >> cause a kernel panic in the system. Below the panicgenerated: >> >> http://pastebin.com/nUXGVR3y > You seem to use dummynet and the problem is not in mpd/pppoe code, > it's it the dummynet code. Look at http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/162558 > for workarounds. Ok :) I will try this: - net.isr.bindthreads=1 in /boot/loader.conf; - net.isr.direct=1 and net.isr.direct_force=1 in /etc/sysctl.conf
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5172CFB2.3010708>