Bugtraq mailing list archives

cc:mail trivial DoS attack - self mailbombing.

From: alan () MANAWATU GEN NZ (Alan Brown)
Date: Thu, 16 Sep 1999 05:35:50 +1200


This seems to work on most cc:mail installations

Send mail to postmaster@[x.x.x.x] where x.x.x.x is the IP address of the
server.

In most cases, the machine will mailbomb itself into the ground
with undeliverable mail messages.

For bonus points, use a bogus, undeliverable sender envelope and watch
it crash even faster.

In some cases, In some cases, postmaster () rDNS name will have the same effect, depending
how badly setup the server is.

Script kiddies may like to have fun by using a sender envelope belonging
to someone else. One case I've seen resulted in the machine sending over
5800 "postmaster: No such user" errors for one message sent to it.

AB

Current thread:

ACK/th_win portscanning Lamont Granquist (Sep 15)
- cc:mail trivial DoS attack - self mailbombing. Alan Brown (Sep 15)
- Re: ACK/th_win portscanning Johannes Erdfelt (Sep 15)
- [security-officer () FreeBSD ORG: FreeBSD Security Advisory: FreeBSD-SA-99:03.ftpd REISSUED] Patrick Oonk (Sep 15)
- [security-officer () FreeBSD ORG: FreeBSD Security Advisory: FreeBSD-SA-99:04.core] Patrick Oonk (Sep 15)
- [security-officer () FreeBSD ORG: FreeBSD Security Advisory: FreeBSD-SA-99:05.fts] Patrick Oonk (Sep 15)
- SuSE Security Announcement - ProFTPD Marc Heuse (Sep 16)
- SuSE Security Announcement - lynx Marc Heuse (Sep 16)