Bugtraq mailing list archives
Re: FTP denial of service attack
From: deraison () CVS NESSUS ORG (Renaud Deraison)
Date: Tue, 7 Dec 1999 18:46:05 +0100
On Tue, 7 Dec 1999, Darren Reed wrote:
Who has more free file descriptors & network ports, you or the ftp server ?
The attack you are describing is not new - this is just a PASV attack, which has been around for years. Hopefully, this problem is now solved. Most modern FTP servers will : - either issue an error when they are issued a second PASV command - either accept the new PASV command, but they will close the previously open socket, so the FTP server has only two fd's open at a time. If your FTP server server do not do this, use a real one. -- Renaud -- Renaud Deraison The Nessus Project - http://www.nessus.org
Current thread:
- Re: Analysis of Tribe Flood Network, (continued)
- Re: Analysis of Tribe Flood Network Mixter (Dec 11)
- Big problem on linux 2.0 visi0n (Dec 11)
- Re: Big problem on linux 2.0 visi0n (Dec 11)
- Re: Big problem on linux 2.0 Andrea Arcangeli (Dec 14)
- HP-UX: Security Vulnerability in wu-ftp Aleph One (Dec 13)
- Re: w00giving #8] Solaris 2.7's snoop Shane A. Macaulay (Dec 09)
- Clarification needed on the snoop vuln(s) Alfred Huger (Dec 09)
- Re: FTP denial of service attack Renaud Deraison (Dec 07)
- FTP DoS - PORT and PASV effected. Darren Reed (Dec 07)
- Re: FTP DoS - PORT and PASV effected. Henrik Nordstrom (Dec 09)
- Re: FTP denial of service attack Hugo.van.der.Kooij () CAIW NL (Dec 08)
- Re: FTP denial of service attack Paulo Licio de Geus (Dec 09)
- [Debian] New version of htdig released Aleph One (Dec 10)
- Fundamental flaw in UnixWare 7 security Brock Tellier (Dec 10)
- Solaris sadmind Buffer Overflow Vulnerability Alfred Huger (Dec 10)