From owner-freebsd-isp Fri Nov 5 5: 8: 2 1999 Delivered-To: freebsd-isp@freebsd.org Received: from sand2.sentex.ca (sand2.sentex.ca [209.167.248.3]) by hub.freebsd.org (Postfix) with ESMTP id F10C8151AD for ; Fri, 5 Nov 1999 05:07:46 -0800 (PST) (envelope-from mike@sentex.net) Received: from gravel (ospf-mdt.sentex.net [205.211.164.81]) by sand2.sentex.ca (8.8.8/8.8.8) with SMTP id IAA17150; Fri, 5 Nov 1999 08:06:12 -0500 (EST) (envelope-from mike@sentex.net) Message-Id: <4.1.19991105075939.04a79ec0@granite.sentex.ca> X-Sender: mdtancsa@granite.sentex.ca X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 Date: Fri, 05 Nov 1999 08:06:10 -0500 To: up@3.am From: Mike Tancsa Subject: Re: login.conf and resource limits Cc: freebsd-isp@freebsd.org In-Reply-To: References: <38224635.260144868@mail.sentex.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 11:36 PM 11/4/99 , up@3.am wrote: > >I got news for you, that ain't going to stop the DoS. Compile and run >this code as a user from your shellu class It will crash your server, so >don't do it on a production box (BTW, I had checked the security list >archives and saw a thread on this, but no answers that worked): Yes, I know it does not prevent that... See the discussion in current as to the upcoming fix. There is also the mmap DOS. I believe there is a fix for that in Current, but not STABLE. It wasnt clear in your original post that you wanted to prvent this particular DOS, which is not possible right now. ---Mike ********************************************************************** Mike Tancsa, Network Admin * mike@sentex.net Sentex Communications Corp, * http://www.sentex.net/mike Cambridge, Ontario * 01.519.651.3400 Canada * To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message