[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] FTPD DoS
- Subject: Re: [cobalt-security] FTPD DoS
- From: "Jonathan Michaelson" <michaelsonjd@xxxxxxxxxxx>
- Date: Sat, 17 Mar 2001 17:15:14 -0000
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> > ProFTP on the RaQ servers runs through inet and so restarting inetd is
the
> > method for restarting the ftp server.
>
> Incorrect. Restarting or killing inetd does NOT kill ProFTPD sessions
> running. You have to killall -9 proftpd to do this.
Thank you for clarifying that point, I was indeed wrong to imply that
restarting inetd would kill off any existing connections.
I hope this rathole hasn't diluted my original post that contains the
correct method and description to avoid this very public DoS in ProFTP.
Hopefully, we'll soon see a workaround for the shell prompt DoS that is also
a part of this for those that allow users shell access to their RaQs.
Regards,
Jonathan Michaelson