Re: setting access rights to priviledged ports

Ion Badulescu (ionut@moisil.cs.columbia.edu)
Wed, 21 Oct 1998 02:46:22 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: H.J. Lu: "A new lockd patch"
Previous message: Andi Kleen: "Re: [patch] jiffies wraparound [Re: 2.1.125 Show stopper list: Draft]"
Next in thread: David Lang: "Re: setting access rights to priviledged ports"
Reply: David Lang: "Re: setting access rights to priviledged ports"

On Tue, 20 Oct 1998 02:53:02 -0400, Anthony Barbachan wrote:

> From: Olaf Titz <olaf@bigred.inka.de>
>>(Btw. for any services started from inetd there is a trivial way to
>>shut them down.)
>>
>
> Is this trivial way doable by a normal user? If so then this is a serious
> security bug.

It's an even more serious DoS problem otherwise.

And btw even sendmail can be convinced to shut down, quite trivially --
just cause the load to go over the limit set in sendmail.cf and sendmail
will close its socket. Then you are free to bind to it if the port is over
1023.

Ion

-- It is better to keep your mouth shut and be thought a fool, than to open it and remove all doubt.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: H.J. Lu: "A new lockd patch"
Previous message: Andi Kleen: "Re: [patch] jiffies wraparound [Re: 2.1.125 Show stopper list: Draft]"
Next in thread: David Lang: "Re: setting access rights to priviledged ports"
Reply: David Lang: "Re: setting access rights to priviledged ports"