Bugtraq mailing list archives

Re: local telnetd DoS

From: hno () HEM PASSAGEN SE (Henrik Nordstrom)
Date: Sat, 11 Sep 1999 11:18:47 +0200


Zo0mer wrote:


Hi,i found local DoS that Crash telnetd (tested on Slackware 4.0, RH 5.2)
type
telnet localhost | telnet localhost | telnet localhost ...... about 50 times
result will be 'Connection Refused' , telnetd crash.


Sounds very much like inetd service respawn rate limitation. The default
rate limit is usually something like 40 accesses/minute. See your inetd
documentation for exact value of the default limit and how it may be
tuned.

The purpose of this limit is to limit the DOS attack to only the service
attacked and not bring down the whole machine by resource exhaustion
(memory, processes, CPU).

--
Henrik Nordstrom

Current thread:

local telnetd DoS Zo0mer (Sep 07)
- Re: local telnetd DoS Chris Terry (Sep 10)
- Re: local telnetd DoS George (Sep 10)
  - Re: local telnetd DoS Ray Barnes (Sep 11)
- Re: local telnetd DoS Signal 11 (Sep 10)
- Re: local telnetd DoS Henrik Nordstrom (Sep 11)
- <Possible follow-ups>
- Re: local telnetd DoS infernix (Sep 10)