Date: Wed, 3 Mar 1999 12:25:20 +1030 From: Greg Lehey <grog@lemis.com> To: Terry Todd <tlt@tltodd.com>, freebsd-questions@FreeBSD.org Subject: Re: process table attacks Message-ID: <19990303122520.T441@lemis.com> In-Reply-To: <199903021502.JAA12657@tltodd.com>; from Terry Todd on Tue, Mar 02, 1999 at 09:02:00AM -0600 References: <199903021502.JAA12657@tltodd.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tuesday, 2 March 1999 at 9:02:00 -0600, Terry Todd wrote: > > How much of a threat are process table attacks to FreeBSD 2.x systems. > > The article at http://www.zdnet.com/zdnn/stories/news/0,4586,2217922,00.html > seems to indicate that BSD systems aren't that vulnerable to this DOS attack. The article's rather vague, but it seems that the key problem here is the number of dead fingerds hanging around. This should be limited by the number of processes allowed in /etc/login.conf. fingerd runs as user 'nobody', so even when this limit is reached, root can still create processes. I don't think that there's much danger of them doing any serious DOS, though of course they could make a nuisance of themselves. Greg -- When replying to this message, please copy the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address, home page and phone numbers finger grog@lemis.com for PGP public key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990303122520.T441>