OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Bugtraq Archives: Re: FTP denial of service attack

Re: FTP denial of service attack


Subject: Re: FTP denial of service attack
From: Renaud Deraison (deraisonCVS.NESSUS.ORG)
Date: Tue Dec 07 1999 - 11:46:05 CST


On Tue, 7 Dec 1999, Darren Reed wrote:

> Who has more free file descriptors & network ports, you or the ftp server ?

The attack you are describing is not new - this is just a PASV attack,
which has been around for years.

Hopefully, this problem is now solved.

Most modern FTP servers will :

        - either issue an error when they are issued a second
          PASV command

        - either accept the new PASV command, but they will close
          the previously open socket, so the FTP server has only
          two fd's open at a time.

If your FTP server server do not do this, use a real one.

                                -- Renaud

--
Renaud Deraison
The Nessus Project - http://www.nessus.org



This archive was generated by hypermail 2b27 : Wed Dec 08 1999 - 21:09:53 CST