From owner-freebsd-bugs Tue Jan 8 11: 6:35 2002 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id D280D37BA30; Tue, 8 Jan 2002 11:01:58 -0800 (PST) Received: (from dwmalone@localhost) by freefall.freebsd.org (8.11.6/8.11.6) id g08IuJt54400; Tue, 8 Jan 2002 10:56:19 -0800 (PST) (envelope-from dwmalone) Date: Tue, 8 Jan 2002 10:56:19 -0800 (PST) From: Message-Id: <200201081856.g08IuJt54400@freefall.freebsd.org> To: dwmalone@FreeBSD.org, freebsd-bugs@FreeBSD.org, dwmalone@FreeBSD.org Subject: Re: bin/33670: default inetd install allows for unlimited resource use Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Synopsis: default inetd install allows for unlimited resource use Responsible-Changed-From-To: freebsd-bugs->dwmalone Responsible-Changed-By: dwmalone Responsible-Changed-When: Tue Jan 8 10:52:12 PST 2002 Responsible-Changed-Why: I'll take a look at this, as inetd is my problem. While making making "-c 20" would protect people against such attacks, I'd be worried about it upsetting people who run inetd at big sites. Maybe we should run it by freebsd-stable and freebsd-audit and see what the general opinion is? http://www.FreeBSD.org/cgi/query-pr.cgi?pr=33670 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message