Bugtraq mailing list archives
Re: NFS Denial of Service advisory from Sun
From: Edsel Adap <edsel () adap org>
Date: Fri, 18 Oct 2002 08:55:11 -0400
I tested this on my Solaris NFS server and it didn't kill lockd. However there are many ways to DoS a Solaris NFS server. One of them is to put a RedHat 7.3 (original kernel) on the network as an NFS client then initiate a large read over NFS and watch the Solaris NFS server become unresponsive to pings. As soon as you kill the read everything goes back to normal. On Thu, Oct 17, 2002 at 12:21:50PM +0000, m g wrote:
Hello all, Today, Sun released an advisory (47815) about how the lockd can be used to cause a DoS of NFS. However they did not provide any details about how the lockd can be killed to trigger this. See http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F47815&zone_32=category%3Asecurity Does anyone know if this security issue is somehow related to the Bugtraq posting from Mike Murray about lockd and nfs on Linux from June 2000, see: http://archives.neohapsis.com/archives/bugtraq/2000-06/0073.html I currently don't have a Sun box available to test it myself, so perhaps someone else can verify this or provide me information about this. Grtx Mike G. (not Mike Murray) _________________________________________________________________ Unlimited Internet access for only $21.95/month. Try MSN! http://resourcecenter.msn.com/access/plans/2monthsfree.asp
-- Edsel Adap edsel () adap org http://www.adap.org/~edsel/ LINUX - the choice of the GNU generation "Netscape is an application which grows to fill all available memory." - me
Attachment:
_bin
Description:
Current thread:
- NFS Denial of Service advisory from Sun m g (Oct 17)
- Re: NFS Denial of Service advisory from Sun Edsel Adap (Oct 18)