|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: WU-FTPD 2.6.2 Freezer
From: Seth Arnold (sarnold
wirex.com)
Date: Fri Oct 31 2003 - 13:40:44 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Fri, Oct 31, 2003 at 02:55:43PM -0000, Angelo Rosiello wrote:
> for( i=0; i<loop; i++ )
> {
> write( sd, "LIST -w 1000000 -C\n", 19 );
> }
It is probably worth pointing out that it is FSF ls(1) at fault here;
wu-ftpd just provides a convenient way for potentially unauthenticated
users to DoS the machine. If your OS supports rlimits (ulimit(3)), I
believe they will provide reliable protection against this problem.
--
http://www.immunix.com/ secure Linux distributions and appliances
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE/orq8+9nuM9mwoJkRAgdOAJ9BKH1M6dHOB63SWQWdmJH9r4vMHgCgn5qx
g3SVe+lkRu0sQVKiQQwSFhU=
=IzZd
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]