Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1999_1

Bugtraq archives for 1st quarter (Jan-Mar) 1999: Re: Anonymous Qmail Denial of Service

Re: Anonymous Qmail Denial of Service

Nick Andrew (nickZETA.ORG.AU)
Tue, 5 Jan 1999 09:48:55 +1100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: David G. Andersen: "Improved icmp time/mask querying program"
Previous message: Robert Borrell: "SUN almost has a clue! (automountd) (fwd)"
In reply to: Trev: "Re: Anonymous Qmail Denial of Service"
Next in thread: D. J. Bernstein: "Re: Anonymous Qmail Denial of Service"

In message <3.0.1.32.19990104013631.0092a770mail.kics.bc.ca>, Trev writes:
>Pardon my comments here, I am no qmail expert (I don't even run the thing),
>but surely you could get around this by applying a small patch to
>qmail-queue to look for such zero-length files and remove any that are
>found (ie: one of the first things it does).

Naively it sounds like a good idea. In practice though, there is a race
condition between one instance of qmail-queue creating a file (at which
point it has zero length) and another instance finding and removing the
same, in-use file. Additional tests would have to be performed such as
testing time-since-creation.

Holistically however, this kind of "cleanup" offends my sense of the tao
of system programming. Processes should not leave crud to be cleaned up by
later, unrelated processes.

Nick.

Next message: David G. Andersen: "Improved icmp time/mask querying program"
Previous message: Robert Borrell: "SUN almost has a clue! (automountd) (fwd)"
In reply to: Trev: "Re: Anonymous Qmail Denial of Service"
Next in thread: D. J. Bernstein: "Re: Anonymous Qmail Denial of Service"