Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: inetd vulnerability

From: chris () NIRVANA NET (Chris Conner)
Date: Tue, 15 Sep 1998 19:18:54 -0400

As far as I can see, all this script does is make a large number of
connections to a single port. The inetd man pages allow you to put an
argument after 'wait' or 'nowait' in inetd.conf for any service. (wait.256)
this allows 256 connections in a minute, compared to the default 40. This
script will still kill the port when it is set to 256, so maybe someone can
hack something up to make inetd allow more than 256 connections in under a
minute?

Chris

At 05:04 PM 9/29/98 -0400, you wrote:

I was talking to someone on irc last night after I made my post about the
mountd exploit and they said they had a exploit that would kill inetd.
I did not get the stuff but I had him try it on 3 of my linux systems and
it did work..
morex .-
http://morex.net
http://www.worldnetworks.net
Previous By Date Next
Previous By Thread Next

Current thread: