From owner-freebsd-security Wed May 23 2:38:35 2001 Delivered-To: freebsd-security@freebsd.org Received: from mout1.freenet.de (mout1.freenet.de [194.97.50.132]) by hub.freebsd.org (Postfix) with ESMTP id ABDF337B43C for ; Wed, 23 May 2001 02:38:29 -0700 (PDT) (envelope-from michael.radzewitz@freenet-ag.de) Received: from [194.97.50.144] (helo=mx1.freenet.de) by mout1.freenet.de with esmtp (Exim 3.22 #1) id 152V64-00014S-00 for security@freebsd.org; Wed, 23 May 2001 11:38:28 +0200 Received: from staff.freenet-ag.de ([62.104.227.5]) by mx1.freenet.de with esmtp (Exim 3.22 #1) id 152V64-0001Al-00 for security@freebsd.org; Wed, 23 May 2001 11:38:28 +0200 Received: by staff.freenet-ag.de with Internet Mail Service (5.5.2653.19) id ; Wed, 23 May 2001 11:38:26 +0200 Message-ID: From: Michael Radzewitz To: "'security@freebsd.org'" Subject: RE: apache_logs/system hang up Date: Wed, 23 May 2001 11:38:18 +0200 X-Mailer: Internet Mail Service (5.5.2653.19) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello Alexandr, currently the system is running under redhat linux 6.2 with kernel 2.2.14-5.0 and apache 1.3.14 on a intel i686 I try to reproduce this error. I think it's a security issue and should be disscused when a unnormal http-request is able to stop a running system. > -----Ursprüngliche Nachricht----- > Von: Alexandr P. Kovalenko [mailto:never@uic-in.net] > Gesendet: Mittwoch, 23. Mai 2001 10:37 > An: Michael Radzewitz > Cc: 'security@freebsd.org' > Betreff: Re: apache_logs/system hang up > > > Hello, Michael Radzewitz! > > On Wed, May 23, 2001 at 10:00:46AM +0200, you wrote: > > > Hello Marc, > > > > the system wasn't able to do anything so that i had to > reset it by hand. > > Tonight the same thing happend. Acctually I would think > there must be > > something wrong on my site. The characters contain nothing else > > than hundreds of these: ^@^@^@ > > They do not look like a typically binary file. It's always the same > > corner of the internet which one of my users visit and > which causes the > > trouble one minute later. > > > > Today I plugged a monitor in to see what happend and i got > the message: > > > > login: unable to login > > > > followed by a kernel panic and the normal core dump output > of a linux > > system. > > > > As I mentioned before I thing there is something wrong on my site > > but I am a little bit concerned about the: unable to login message. > > I will monitor this problem until the end of the week - > maybe i get some > > more information about it. Later than I will swap the > system to FreeBSD. > Sorry, what apache versions are you running and what are uname -a's ? > /me have similar situation, periodically machine locks up. > When on last second I'm able to run top I see that swap is > filled and apache is > about 350Mb.... Maybe it is common problem/security issue > > -- > NEVE-RIPE > ICQ: 36925929 http://www.nevermind.kiev.ua/ > Powered by caffeine. Made with beer. > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message