Penetration Testing mailing list archives
Re: fuzzing xinetd services
From: Richard Moore <rich () westpoint ltd uk>
Date: Wed, 01 Dec 2004 15:57:28 +0000
A bit tricky, but you could perhaps send an abort signal to the process with kill if timing considerations allowed it. It should be noted though that any application can choose not to dump core by changing the signalhandlers for signals like SEGV or SIGILL to SIGIGN. eg. We do this in KDE in order to allow for a graphical crash handler that provides links
to the bug tracking system (and generates a stack trace if the binary has symbols included). Rich. Jonas Hansen wrote:
Hi,Does anybody know a more graceful way of getting core dumps from services that are under "parental control" (or for some other reason won't core dump, even with "ulimit -c unlimited") other than attaching gdb and force it? This is particularly annoying during fuzzing since you need to detect when/how it crashed./Jonas
-- Richard Moore, Principle Software Engineer, Westpoint Ltd, Albion Wharf, 19 Albion Street, Manchester, M1 5LN, England Tel: +44 161 237 1028 Fax: +44 161 237 1031
Current thread:
- fuzzing xinetd services Jonas Hansen (Dec 01)
- Re: fuzzing xinetd services Richard Moore (Dec 01)