From owner-freebsd-bugs  Tue Jan  8 11: 6:35 2002
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id D280D37BA30; Tue,  8 Jan 2002 11:01:58 -0800 (PST)
Received: (from dwmalone@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id g08IuJt54400;
	Tue, 8 Jan 2002 10:56:19 -0800 (PST)
	(envelope-from dwmalone)
Date: Tue, 8 Jan 2002 10:56:19 -0800 (PST)
From: <dwmalone@FreeBSD.org>
Message-Id: <200201081856.g08IuJt54400@freefall.freebsd.org>
To: dwmalone@FreeBSD.org, freebsd-bugs@FreeBSD.org,
	dwmalone@FreeBSD.org
Subject: Re: bin/33670: default inetd install allows for unlimited resource use
Sender: owner-freebsd-bugs@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-bugs.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-bugs>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-bugs>
X-Loop: FreeBSD.org

Synopsis: default inetd install allows for unlimited resource use

Responsible-Changed-From-To: freebsd-bugs->dwmalone
Responsible-Changed-By: dwmalone
Responsible-Changed-When: Tue Jan 8 10:52:12 PST 2002
Responsible-Changed-Why: 
I'll take a look at this, as inetd is my problem.

While making making "-c 20" would protect people against such attacks,
I'd be worried about it upsetting people who run inetd at big sites.
Maybe we should run it by freebsd-stable and freebsd-audit and see what
the general opinion is?


http://www.FreeBSD.org/cgi/query-pr.cgi?pr=33670

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message