Date: Thu, 24 Jun 1999 12:47:27 -0600 (MDT) From: # rm -rf /* <geniusj@shell.phrozen.org> To: Seth <seth@freebie.dp.ny.frb.org> Cc: stable@FreeBSD.ORG Subject: Re: DoS?? Message-ID: <Pine.LNX.4.10.9906241246440.2344-100000@shell.phrozen.org> In-Reply-To: <Pine.BSF.4.10.9906241443500.45969-100000@freebie.dp.ny.frb.org>
next in thread | previous in thread | raw e-mail | index | archive | help
All I can really say is that in the netstat -a.. it was like a syn flood except all the connections were established on the ssh port.. we have figured out that it just overloads the cpu, bringing the load averages to over 500 until it ends.. since ssh has to generate a key, etc.. it takes very little to get the load like that.. On Thu, 24 Jun 1999, Seth wrote: > Assuming you have the tools to reproduce this at will, why not share some > more information? What sort of "small attack", for instance? > > SB > > On Thu, 24 Jun 1999, # rm -rf /* wrote: > > > > > I'm not quite sure if this is a DoS.. but on two 3.2-STABLE > > machines with different configurations.. on two different networks.. after > > a small attack from different places, the machine locks up.. the ports > > still respond and there is still a ping reply.. but at the console, there > > is no keyboard response and although the ports are answered.. nothing > > happens after that.. no data is sent or received.. can someone enlighten > > me on this? This happened on 2 different machines.. on the second one it > > happened multiple times in a row :/.. > > > > Thanks in advance, > > Jason DiCioccio > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-stable" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.10.9906241246440.2344-100000>