> From: lamont_at_icopyright.com
> Subject: Re: Sun finally releases patch for nmap inetd denial of service issue
> To: "Alek O. Komarnitsky (N-CSC)" <alek_at_ast.lmco.com>
> Cc: nmap-hackers_at_insecure.org
>
> The one-line description of the problem "accept() hangs after successful
> select()" makes it sound more like its an OS issue than an inetd bug.
> That would be an important clarification, since it would affect other
> programs as well.
You are EXACTLY correct ... I was a bit sloppy in my earlier Email
saying this was an inetd problem - in fact, the fix is NOT the inetd
executeable, but actually a patch to sockfs ... i.e. it is OS.
I mentioned the inetd 'cause I can repeat the problem "using" that
utility and it's a fairly serious DOS when inetd dies.
alek
P.S. I'm getting "lame" responses from Sun on Solaris2.6 & 2.8
equivelent patches for 109104-04 (2.7 ONLY) ... so if anyone on
this list has some "pull" with the Sun guys, you might nudge 'em
that they should really releases patches to this DOS for other OS's.
--------------------------------------------------
For help using this (nmap-hackers) mailing list, send a blank email to
nmap-hackers-help_at_insecure.org . List run by ezmlm-idx (www.ezmlm.org).
Received on Sep 25 2000
Intro
