Vulnerability Development: Re: ping flooding as normal user

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: ping flooding as normal user

From: Glen Rosenblatt <glenr () COLUMBIA EDU>
Date: Mon, 14 Aug 2000 14:32:06 -0400

the problem is you aren't flooding, you are just sending the data, also
there is no use for normal users to have access to ping , chmod 700 ping,
and you are all set

On Mon, 14 Aug 2000, Slawek wrote:

Hello,


I'm not sure if it's new informations, but as far as I can see it works at
least on most of current systems (worked everywhere I could test it).


The problem is:

-s parameter of ping command has no upper limit for normal users.
This allows normal users to send for example 1 * 60000 bytes of ICMP data
per second (from one copy of ping invoked)

I think it's just great for DoSing ;o)


Bye,
Slawek


Glen Rosenblatt                        glenr () columbia edu
Columbia University                    AcIS Network Systems Group

By Date By Thread

Current thread:

ping flooding as normal user Slawek (Aug 14)
- Re: ping flooding as normal user Bluefish (Aug 14)
  - Re: ping flooding as normal user Pavel Kankovsky (Aug 15)
  - Re: ping flooding as normal user Daniel Petzen (Aug 15)
- Re: ping flooding as normal user Glen Rosenblatt (Aug 14)
  - Re: ping flooding as normal user Slawek (Aug 14)
    - Re: ping flooding as normal user Cam (Aug 15)
- "Re: ping flooding as normal user" and strange icmp behavior with Linux 2.4 Weston Pawlowski (Aug 17)
  - Re: "Re: ping flooding as normal user" and strange icmp behavior withLinux 2.4 Sebastian Pape (Aug 18)
    - Re: "Re: ping flooding as normal user" and strange icmp behaviorwithLinux 2.4 Alon Oz (Aug 20)