From owner-freebsd-security  Thu Mar 15 21:59:16 2001
Delivered-To: freebsd-security@freebsd.org
Received: from obsecurity.dyndns.org (adsl-63-207-60-202.dsl.lsan03.pacbell.net [63.207.60.202])
	by hub.freebsd.org (Postfix) with ESMTP id A4BA637B718
	for <freebsd-security@freebsd.org>; Thu, 15 Mar 2001 21:59:13 -0800 (PST)
	(envelope-from kris@obsecurity.org)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id 596A466B09; Thu, 15 Mar 2001 21:59:13 -0800 (PST)
Date: Thu, 15 Mar 2001 21:59:13 -0800
From: Kris Kennaway <kris@obsecurity.org>
To: "Michael A. Dickerson" <mikey@singingtree.com>
Cc: freebsd-security@freebsd.org
Subject: Re: Multiple vendors FTP denial of service (fwd)
Message-ID: <20010315215913.A70990@mollari.cthul.hu>
References: <98righ$100l$1@FreeBSD.csie.NCTU.edu.tw> <004b01c0ada9$99f7b540$db9497cf@singingtree.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="a8Wt8u1KmwUX3Y2C"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <004b01c0ada9$99f7b540$db9497cf@singingtree.com>; from mikey@singingtree.com on Thu, Mar 15, 2001 at 03:42:29PM -0800
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


--a8Wt8u1KmwUX3Y2C
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Mar 15, 2001 at 03:42:29PM -0800, Michael A. Dickerson wrote:
> > 4.1 from Aug 10th is hurt by it.
> >
> >          ---Mike
> >
>=20
> So is 4.3-beta (otherwise known as 4-stable) from March 8.  ftpd uses 100%
> cpu and memory use grows until the kernel runs out of swap space and star=
ts
> killing processes.  This was an ftp connection with a regular username and
> password, in an average home directory.

I'm pretty sure (but haven't tested) that resource limits will prevent
this problem.  Your ftpd shouldn't be using large amount of memory
under normal operating procedures, so you can set those to reasonable
values and not suffer any ill effects.

Kris

--a8Wt8u1KmwUX3Y2C
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE6sauwWry0BWjoQKURAgE4AKCnmhjKbrNZCIMikQJWUftK81880ACeMt5a
pb6xBdAHKw1FylymJOF7y3k=
=YHjb
-----END PGP SIGNATURE-----

--a8Wt8u1KmwUX3Y2C--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message