From owner-freebsd-hackers  Tue Sep  9 10:03:58 1997
Return-Path: <owner-freebsd-hackers>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id KAA20550
          for hackers-outgoing; Tue, 9 Sep 1997 10:03:58 -0700 (PDT)
Received: from misery.sdf.com (misery.sdf.com [204.244.210.193])
          by hub.freebsd.org (8.8.7/8.8.7) with SMTP id KAA20535
          for <freebsd-hackers@freebsd.org>; Tue, 9 Sep 1997 10:03:52 -0700 (PDT)
Received: from tom by misery.sdf.com with smtp (Exim 1.62 #1)
	id 0x8Tci-0006vG-00; Tue, 9 Sep 1997 09:58:44 -0700
Date: Tue, 9 Sep 1997 09:58:44 -0700 (PDT)
From: Tom <tom@sdf.com>
To: Kenny Hanson <khanson@pdspc.com>
cc: "'Josef Karthauser'" <joe@pavilion.net>,
        "FreeBSD Hackers (E-mail)" <freebsd-hackers@freebsd.org>
Subject: RE: FTP compromise.
In-Reply-To: <91DD7FDA88E4D011BED00000C0DD87E70BE975@pds-gateway.pdspc.com>
Message-ID: <Pine.BSF.3.95q.970909095709.26597B-100000@misery.sdf.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk


On Tue, 9 Sep 1997, Kenny Hanson wrote:

> I just successfully shot my cpu utilization up to 100% without any hopes
> of seeing it come down.  I had to kill the ftp process before the system
> returned to a normal state.  This is definitely D.O.S... anybody out
> there
> have any ideas on how to erradicate this?  I ran this for 15 minutes
> before

  Don't use wu-ftpd?  The stock ftpd has lots of new features now, and can
also have a builtin ls, which gives it a perf boost over wu-ftpd.

  Also, it doesn't say which version of wu-ftpd was used.  I know there
are new versions from academ.

Tom