Bugtraq mailing list archives

Re: ANNOUNCE: secure identd v0.3

From: taral () MAIL UTEXAS EDU (Taral)
Date: Wed, 16 Sep 1998 18:22:37 -0500


Actually, a secure box should run with RLIMIT_AS (Linux-ism?) set on all
daemons... I started using it on apache httpd to prevent the header-spam
DoS, but it seems like a good idea on all processes that shouldn't consume
much memory.

Taral

-----Original Message-----
Suggested fix: read a fixed-size read buffer from the network.  No
reasonable ident query needs to be longer than a couple bytes for
the two port numbers. When used in the right place, fixed-size
buffers are beneficial to security.

        Wietse

Current thread:

ANNOUNCE: secure identd v0.3 Paul Boehm (Sep 14)
- Re: ANNOUNCE: secure identd v0.3 Booker Bense (Sep 15)
- Re: ANNOUNCE: secure identd v0.3 Wietse Venema (Sep 15)
  - Re: ANNOUNCE: secure identd v0.3 Paul Boehm (Sep 15)
  - Re: ANNOUNCE: secure identd v0.3 Taral (Sep 16)
    - Re: ANNOUNCE: secure identd v0.3 Wietse Venema (Sep 16)
    - Re: ANNOUNCE: secure identd v0.3 Kragen (Sep 17)