Re: NFS Denial of Service advisory from Sun

[Edsel Adap <edsel () adap org>]

I tested this on my Solaris NFS server and it didn't kill lockd.

However there are many ways to DoS a Solaris NFS server.
One of them is to put a RedHat 7.3 (original kernel) on the network
as an NFS client then initiate a large read over NFS and watch the
Solaris NFS server become unresponsive to pings.  As soon as you kill
the read everything goes back to normal.

On Thu, Oct 17, 2002 at 12:21:50PM +0000, m g wrote:
> Hello all,
>
> Today, Sun released an advisory (47815) about how the lockd can be used to 
> cause a DoS of NFS. However they did not provide any details about how the 
> lockd can be killed to trigger this. See 
> http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F47815&zone_32=category%3Asecurity
>
> Does anyone know if this security issue is somehow related to the Bugtraq 
> posting from Mike Murray  about lockd and nfs on Linux from  June 2000, see:
> http://archives.neohapsis.com/archives/bugtraq/2000-06/0073.html
>
> I currently don't have a Sun box available to test it myself, so perhaps 
> someone else can verify this or provide me information about this.
>
> Grtx Mike G. (not Mike Murray)
>
> _________________________________________________________________
> Unlimited Internet access for only $21.95/month.  Try MSN! 
> http://resourcecenter.msn.com/access/plans/2monthsfree.asp

-- 
Edsel Adap
edsel () adap org
http://www.adap.org/~edsel/          LINUX - the choice of the GNU generation

"Netscape is an application which grows to fill all available memory."  - me

Attachment: _bin
Description: