[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] FTPD DoS

Subject: Re: [cobalt-security] FTPD DoS
From: "Jonathan Michaelson" <michaelsonjd@xxxxxxxxxxx>
Date: Sat, 17 Mar 2001 17:15:14 -0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> > ProFTP on the RaQ servers runs through inet and so restarting inetd is
the
> > method for restarting the ftp server.
>
> Incorrect.  Restarting or killing inetd does NOT kill ProFTPD sessions
> running.  You have to killall -9 proftpd to do this.

Thank you for clarifying that point, I was indeed wrong to imply that
restarting inetd would kill off any existing connections.

I hope this rathole hasn't diluted my original post that contains the
correct method and description to avoid this very public DoS in ProFTP.

Hopefully, we'll soon see a workaround for the shell prompt DoS that is also
a part of this for those that allow users shell access to their RaQs.

Regards,
Jonathan Michaelson

Follow-Ups:
- Re: [cobalt-security] FTPD DoS
  - From: Gossi The Dog

References:
- Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
  - From: Gossi The Dog

Prev by Date: Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
Next by Date: Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
Previous by thread: Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
Next by thread: Re: [cobalt-security] FTPD DoS

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index