Date: Sat, 19 Dec 1998 10:55:14 -0700 (MST) From: Colin Eric Johnson <colinj@cs.unm.edu> To: Rico Pajarola <pajarola@cybertime.ch> Cc: security@FreeBSD.ORG Subject: Re: nmap crashes inetd/portmap on 2.2.6 Message-ID: <Pine.GSU.4.05.9812191054001.23222-100000@viper.cs.unm.edu> In-Reply-To: <3.0.32.19981219170558.0080a8c0@www.dlc.cybertime.ch>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 19 Dec 1998, Rico Pajarola wrote: > portscanning with nmap results in inetd crashing/hanging on FBSD 2.2.6 > which makes an excellent DoS attack. Portmap is also affected, inetd hangs > initializing rpc/udp services when you HUP it, making it somewhat more > complicated to recover, as you'll have to restart all rpc services (in the > correct order). It is not always reproducible (sometimes you need to try > several times with different flags to nmap). I couldn't crash inetd on > FBSD-Current (may 28 1998) so I guess it has been fixed. Are there any > known issues I missed? other os are vulnerable as well (still testing). I have seen similar behavior on Solaris 2.6 and NextStep 3.3 machines when they were scanned. In the former case the inetd stopped and in the latter the machine rebooted spontaneously. Colin E. Johnson | colinj@unm.edu | http://www.unm.edu/~colinj/ Harming only the humorless since 1967 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSU.4.05.9812191054001.23222-100000>