From owner-freebsd-security  Fri Dec 17 22:16: 6 1999
Delivered-To: freebsd-security@freebsd.org
Received: from zone.unixshell.com (zone.syracuse.net [209.2.141.6])
	by hub.freebsd.org (Postfix) with ESMTP id B273614BFC
	for <freebsd-security@freebsd.org>; Fri, 17 Dec 1999 22:15:59 -0800 (PST)
	(envelope-from mayres@unixshell.com)
Received: from localhost (mayres@localhost)
	by zone.unixshell.com (8.9.3/8.9.3) with ESMTP id AAA26356;
	Sat, 18 Dec 1999 00:49:44 -0500 (EST)
	(envelope-from mayres@unixshell.com)
Date: Sat, 18 Dec 1999 00:49:43 -0500 (EST)
From: Matt Ayres <mayres@unixshell.com>
To: Bosko Milekic <bmilekic@dsuper.net>
Cc: freebsd-security@freebsd.org
Subject: Re: !!!really, really big problem with *BSD!!!
In-Reply-To: <Pine.OSF.4.05.9912170123250.25716-100000@oracle.dsuper.net>
Message-ID: <Pine.BSF.4.20.9912180049150.26329-100000@zone.unixshell.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

How exactly do you limti the sockbuf size? I seemed to have missed that
thread...

On Fri, 17 Dec 1999, Bosko Milekic wrote:

> On Fri, 17 Dec 1999, jason schwab wrote:
> 
> !>I was surfing the net and talking on irc, as usual, I see this
> !>sockopt.c file, my friend sends me it, he tells me it'll lock up
> !>any openbsd / netbsd / freebsd server, just compile normally and run
> !>it.. poof locks up...
> !>
> !>I tried it on OpenBSD 2.5, OpenBSD 2.6, FreeBSD 3.1-RELEASE,
> !>FreeBSD 3.2-STABLE, FreeBSD 3.3-RELEASE and FreeBSD 3.3-STABLE
> !>
> !>and it WORKED.
> 
> 	This situation has been fixed, in two different ways which, for what
>   concerns this particular "problem" (really, it's a resource exhaustion)
>   in -CURRENT:
> 
>   	(a) Limit sockbuf size.
> 
> 	(b) Code has been added to -CURRENT which will prevent the system
> 	from going down. (e.g. panic()).
> 
> !>
> !>can we work together on fixxing this? non-root user, just compiles
> !>and runs, and poof system locks up.
> !>
> !>Thanks,
> !>Jason L. Schwab
> !>
> !>(below is the sockopt.c file, also found on www.hack.co.za)
> !>
> !><......snip.......>
> 
> 	You really should have taken a look at the mailing list archives
>   before switching on the alarm. :-)
> 
>   Bosko.
> 
> --
>   Bosko Milekic <bmilekic@dsuper.net>
> 
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message