Recently i have been using a dialup 56k account to access the net and have noticed that when my ssh session times out and I am editing a file in ` ee ' the system goes to 99% cpu usage and stays like this till the pid is killed. This is a standard user account (not root/su) Would a user be able to create a denial of service condition on the remote system using this bug? (sorry if this is posted to the incorrect list) Details: System - FreeBSD 5.4-RELEASE-p5 ee using 99% cpu after user session terminates abnormaly PID reported by top. The output from ps looks like this [root@blah][~]$ ps aux| grep 70464 someuser 70464 93.5 0.1 1920 1372 p1- R 7:09PM 687:07.27 ee file Regards Jason M
Brooks Davis
2005-Sep-07 15:37 UTC
ee using 99% cpu after user ssh session terminates abnormaly
On Thu, Sep 08, 2005 at 08:27:13AM +1000, talonz wrote:> Recently i have been using a dialup 56k account to access the net > and have noticed that when my ssh session times out and I am editing > a file in ` ee ' the system goes to 99% cpu usage and stays like > this till the pid is killed. > This is a standard user account (not root/su) > > Would a user be able to create a denial of service condition > on the remote system using this bug?No more then they could with the ablity to run any other program that loops.> (sorry if this is posted to the incorrect list) > > Details: > > System - FreeBSD 5.4-RELEASE-p5 > > ee using 99% cpu after user session terminates abnormaly > PID reported by top. > > The output from ps looks like this > > [root@blah][~]$ ps aux| grep 70464 > someuser 70464 93.5 0.1 1920 1372 p1- R 7:09PM 687:07.27 ee fileI can't seem to trigger this bug on a 7.0 machine either by killing the client or using tcpdrop to kill the tcp session. -- Brooks -- Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20050907/4502d950/attachment.bin
Nate Nielsen
2005-Sep-07 17:13 UTC
ee using 99% cpu after user ssh session terminates abnormaly
talonz wrote:> Recently i have been using a dialup 56k account to access the net > and have noticed that when my ssh session times out and I am editing > a file in ` ee ' the system goes to 99% cpu usage and stays like > this till the pid is killed. > This is a standard user account (not root/su)This happens all the time on servers I manage. It's a real pain because it's hard to see the actual load of the machine. We have a dumb hack of a script that kill these off when they happen.> Would a user be able to create a denial of service condition > on the remote system using this bug?Don't think so, unless there's a process getting starved somewhere, in which case the DOS would be basically impossible to prevent. Cheers, Nate