Possible DoS in rsh

shivanICI.NET

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: costello, don: "Re: NMRC Advisory - "Decryption" of the RCONSOLE Password"
• Previous message: Jim Paris: "Remote CGI can crash Netscape 4.x"
• Next in thread: Nick Andrew: "Re: Possible DoS in rsh"

I don't know if this has been posted before so here it is. If you link your
.rhosts file (or hosts.equiv?) to /dev/zero. When you try to rsh it tried to
read /dev/zero that is of infinate length. I've tried to rsh in and I get
timed out after 60 seconds. Well lets change the situation around a bit. While
this file linked to /dev/zero , I tried to check mail via IMAP (e.g. pine). Well
all my processes zombied out and for each process the mail servers load climbed
a couple points. I didn't try to spawn any more IMAP processes (after 3), but
I'm pretty sure if I did the server's load could have been through the roof.

• Next message: costello, don: "Re: NMRC Advisory - "Decryption" of the RCONSOLE Password"
• Previous message: Jim Paris: "Remote CGI can crash Netscape 4.x"
• Next in thread: Nick Andrew: "Re: Possible DoS in rsh"