From owner-freebsd-security  Fri Oct  9 05:38:13 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id FAA22537
          for freebsd-security-outgoing; Fri, 9 Oct 1998 05:38:13 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from mail.ftf.dk (mail.ftf.net [129.142.64.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA22531
          for <freebsd-security@freebsd.org>; Fri, 9 Oct 1998 05:38:09 -0700 (PDT)
          (envelope-from regnauld@deepo.prosa.dk)
Received: from mail.prosa.dk ([192.168.100.254])
	by mail.ftf.dk (8.8.8/8.8.8/gw-ftf-1.0) with ESMTP id OAA00844;
	Fri, 9 Oct 1998 14:42:59 +0200 (CEST)
	(envelope-from regnauld@deepo.prosa.dk)
X-Authentication-Warning: mail.ftf.dk: Host [192.168.100.254] claimed to be mail.prosa.dk
Received: from deepo.prosa.dk (deepo.prosa.dk [192.168.100.10])
	by mail.prosa.dk (8.8.8/8.8.5/prosa-1.1) with ESMTP id OAA10965;
	Fri, 9 Oct 1998 14:56:28 +0200 (CEST)
Received: (from regnauld@localhost)
	by deepo.prosa.dk (8.8.8/8.8.5/prosa-1.1) id OAA11421;
	Fri, 9 Oct 1998 14:48:49 +0200 (CEST)
Message-ID: <19981009144849.44978@deepo.prosa.dk>
Date: Fri, 9 Oct 1998 14:48:49 +0200
From: Philippe Regnauld <regnauld@deepo.prosa.dk>
To: shivan@ICI.NET
Cc: BUGTRAQ@NETSPACE.ORG, freebsd-security@FreeBSD.ORG
Subject: Re: Possible DoS in rsh
References: <199810061943.PAA28852@bajor.ici.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.88e
In-Reply-To: <199810061943.PAA28852@bajor.ici.net>; from Shivan Dragon on Tue, Oct 06, 1998 at 03:43:01PM -0400
X-Operating-System: FreeBSD 2.2.6-RELEASE i386
Phone: +45 3336 4148
Address: Ahlefeldtsgade 16, 1359 Copenhagen K, Denmark
Organization: PROSA
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Shivan Dragon writes:
> I don't know if this has been posted before so here it is. If you link your
> .rhosts file (or hosts.equiv?) to /dev/zero. When you try to rsh it tried to
> read /dev/zero that is of infinate length. I've tried to rsh in and I get
> timed out after 60 seconds. 

    Please specify the platform when you send such a post.

	Which OS ?  Which version of the rshd ?
	
	BTW: FreeBSD 2.2.7 seems to be unaffected (just asks for
	your password instead).

-- 
 -[ Philippe Regnauld / sysadmin / regnauld@deepo.prosa.dk / +55.4N +11.3E ]-

               The Internet is busy.  Please try again later.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message