From owner-freebsd-security  Sat Sep  4 16:55: 3 1999
Delivered-To: freebsd-security@freebsd.org
Received: from janus.syracuse.net (janus.syracuse.net [205.232.47.15])
	by hub.freebsd.org (Postfix) with ESMTP id F1F4515232
	for <security@FreeBSD.org>; Sat,  4 Sep 1999 16:55:01 -0700 (PDT)
	(envelope-from green@FreeBSD.org)
Received: from localhost (green@localhost)
	by janus.syracuse.net (8.9.3/8.8.7) with ESMTP id TAA77857
	for <security@FreeBSD.org>; Sat, 4 Sep 1999 19:54:54 -0400 (EDT)
X-Authentication-Warning: janus.syracuse.net: green owned process doing -bs
Date: Sat, 4 Sep 1999 19:54:54 -0400 (EDT)
From: "Brian F. Feldman" <green@FreeBSD.org>
X-Sender: green@janus.syracuse.net
To: security@FreeBSD.org
Subject: another local DoS fix (PR ???)
Message-ID: <Pine.BSF.4.10.9909041930390.76486-100000@janus.syracuse.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

I can't find the PR for it again (it was from will@iki.fi, supposedly)
for the problem, but this is something I have been working on

crashopen.c and crashwrite.c had the ability to DoS a system easily.
I fixed crashopen.c with the addition of badfileops. Crashwrite.c and
other problems that could crop up like it are fixed by my patch up at

	http://www.FreeBSD.org/~green/fdfix2.patch

Let me know how useful you find them. I'd like to get my diffs in
4.0 soon, since I've been running with them with no problems for
months, and they make FreeBSD more robust. Let me know what you
think, even if you don't try them, please :)

-- 
 Brian Fundakowski Feldman           /  "Any sufficiently advanced bug is    \
 green@FreeBSD.org                   |   indistinguishable from a feature."  |
     FreeBSD: The Power to Serve!    \        -- Rich Kulawiec               /



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message