From owner-freebsd-questions Tue Nov 25 17:37:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA28043 for questions-outgoing; Tue, 25 Nov 1997 17:37:56 -0800 (PST) (envelope-from owner-freebsd-questions) Received: from subcellar.mwci.net (subcellar.mwci.net [205.254.160.2]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA28032 for ; Tue, 25 Nov 1997 17:37:51 -0800 (PST) (envelope-from jbutt@mwci.net) Received: from subcellar.mwci.net (subcellar.mwci.net [205.254.160.2]) by subcellar.mwci.net (8.8.5/8.8.5) with SMTP id TAA12041; Tue, 25 Nov 1997 19:37:32 -0600 (CST) Date: Tue, 25 Nov 1997 19:37:31 -0600 (CST) From: "James D. Butt" To: Steve Hovey cc: Doug White , questions@freebsd.org Subject: Re: Land DOS Attack. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > > > > > > > > Does anyone here know for sure it 2.2.2-RELEASE is vulnrable to the > > > > > land.c DOS attack? It so is there a patch? > > > > > > > > I believe so. In any case a "quick fix hack" has been committed to > > > > -CURRENT and -STABLE. A security advisory should follow shortly. > > > > > > I couldnt get that land.c jobber to crash anything. > > > > It makes FreeBSD-2.2.5-Release go comatose. > > > > Maybe if its compiled under something other than freebsd - I grabbed the > source and compiled it and nothing.. Yes it is.. Someone ported it to the BSD's check Bugtraq arcives.. -------------------------------------------------------------------------- James D. Butt 'J.D.' Network Engineer Voice 319-557-8463 Network Operations Center Fax 319-557-9771 MidWest Communications, Inc. Pager 319-557-6347 241 Main St. noc@mwci.net Dubuque, IA 52001 jbutt@mwci.net --------------------------------------------------------------------------