From owner-freebsd-security Thu Mar 15 15:17: 6 2001 Delivered-To: freebsd-security@freebsd.org Received: from www3.infolink.com.br (www3.infolink.com.br [200.255.108.4]) by hub.freebsd.org (Postfix) with ESMTP id 68E5B37B719 for ; Thu, 15 Mar 2001 15:17:02 -0800 (PST) (envelope-from apina@infolink.com.br) Received: from infolink.com.br (unverified [200.255.108.32]) by www3.infolink.com.br (Vircom SMTPRS 4.2.181) with SMTP id for ; Thu, 15 Mar 2001 20:16:59 -0300 From: "Antonio Carlos Pina" Reply-To: apina@infolink.com.br To: freebsd-security@freebsd.org Date: Thu, 15 Mar 2001 20:17:00 est Subject: Re: Multiple vendors FTP denial of service (fwd) Message-id: <3ab14d6c.31f.0@infolink.com.br> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, Actually I think this highly depends on HOW MANY files and directories FTPD can access. I didn't see any damage with a jailed FTPD with 1 directoy and 2 files. Best Regards, >I think so. With 4.2-STABLE in an anonymous session we got 100% CPU >until we kill ftpd. > >> > FreeBSD isn't listed, but also vulnerable, at least with the FTPd in >> > -STABLE. >> >> Sure? >> >> With 4.2-REL: >> >> Remote system type is UNIX. >> Using binary mode to transfer files. >> ftp> ls */../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../* >> 150 Opening ASCII mode data connection for '/bin/ls'. >> 226 Transfer complete. >> ftp> >> ftp> ls >> 150 Opening ASCII mode data connection for '/bin/ls'. >> total 13 >> -rw-r--r-- 1 fpscha wheel 628 27 dic 10:38 .cshrc >> drwx------ 2 fpscha wheel 512 29 dic 13:17 .elm >> -rw------- 1 fpscha wheel 1517 20 feb 09:28 .history >> -rw-r--r-- 1 fpscha wheel 299 27 dic 10:38 .login >> >> [Everything normal, I mean] >> >> >> Regards. >> >> Fernando P. Schapachnik >> Administraci=F3n de la red >> VIA NET.WORKS ARGENTINA S.A. >> fschapachnik@vianetworks.com.ar >> Conmutador: (54-11) 4323-3333 - Soporte: 0810-333-AYUDA >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-security" in the body of the message >> > >-- > Frederico A C Neves Registro .br - R.Pio XI, 1500 > +55 11 3838-4130 S=E3o Paulo, SP, Brazil - 05468-901 > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > Cordialmente, Antonio Carlos Pina apina@infolink.com.br Diretor de Tecnologia (CTO) http://www.infolink.com.br To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message