similar to: sbsize and local DoS issue via kernel panic

I noticed with active ftp clients (specifically IMP's .forward modification plugin), an sbsize of something under 32M in /etc/login.conf on the target server now gives Can't create data socket (M-^A> (^A,_<F5>^R(^C): No buffer space available. in the ftp logs. What is a safe value to prevent users from abusing the system by eating up all mbufs ? There is a local DoS if

Dear Mr Mohr, I found the posting you helped for the Flash 5 installation. I now cannot install Flash 5 on wine 4.9.2002 version. Attached please find the log when running wine --debugmsg +relay,+text,+string,+ole setup.exe Could you kindly help to have a look? Very thanks. Leanne

Hello, Has anybody experienced any problems with php3+php4 combo in systems newer than 4.6-STABLE (as of June-Aug 2002)? Briefly, the problem looks very similar to what is stated in the following reports: http://groups.google.com/groups?q=%22php3+kills+apache%22&hl=ru&lr=&ie=UTF-8&oe=UTF-8&selm=wqz8yrfzbug.wl%40hurt.theclones.net&rnum=1

I thought as a means of preventing ssh-agent hijacking by remote hosts one could have a local process communicating with the agent, simply by having a term open with this sort of dialog: agent-mon: on host foo.elite.com requesting agent forwarding for host bar.elite.com (fingerprint matches known_hosts) allow? [yes/no]: I know concepts presented along with patches are prefered, but I'm

Hi, I'm having a problem with the smbd process losing its connection to the password server. Smbd can successfully authenticate a user upon initial connection. Then after some time (within a matter of 10-20 minutes) if the user tries to use the mapped drive, he sometimes gets prompted with an authentication dialog box. Nothing that is typed into this box will be accepted, and the user

I've come across a handful of tests that fail at our site. I consider this one the worst because the process does not return. The patch below simply bypasss the test, but the errors in the out file are included as well. I suspect this is due to more or tighter ulimits on this system. But I'm not sure if this is result of different expectations (kernel/userland) of what should be done in

The Unix/Linux port of OpenSSH 1.2.3 was released yesterday and should be available from a mirror near you. A mirror list is available from: http://violet.ibs.com.au/openssh/files/MIRRORS.html This release fixes the bugs reported since 1.2.2p1 and contains many cleanups from the OpenBSD tree. In particular, the OpenSSL detection problems have been resolved. The layout has changed a little bit.

The Unix/Linux port of OpenSSH 1.2.3 was released yesterday and should be available from a mirror near you. A mirror list is available from: http://violet.ibs.com.au/openssh/files/MIRRORS.html This release fixes the bugs reported since 1.2.2p1 and contains many cleanups from the OpenBSD tree. In particular, the OpenSSL detection problems have been resolved. The layout has changed a little bit.

Hello, I still cannot get dovecot running with more then 1000 processes, but hard limit is 8192 per user in box. I tried everything, including modifying startup script of dovecot to set ulimit -u 8192. Could it be some dovecot bug or dovecot<>freebsd bug? I also tried to set client_limit=2 in imap service to spawn more imap clients in one process, but still I am over 1000 processes with

Hi there, I have a really ugly problem, which, as I know is partially selfmade. But to the problem: I have five servers running samba-2.2.3a-12 (latest Debian Woody release) which are controlled by one master server. All of the five servers act as pdc for an own nt-domain. Now to keep the administrative work as low as possible I have this one master server. Via this server we/our customer

More patch-o-rama :-( ---Mike >From: Michal Zalewski <lcamtuf@dione.ids.pl> >To: bugtraq@securityfocus.com, <vulnwatch@securityfocus.com>, > <full-disclosure@netsys.com> >X-Nmymbofr: Nir Orb Buk >Subject: [Full-Disclosure] Sendmail 8.12.9 prescan bug (a new one) >[CAN-2003-0694] >Sender: full-disclosure-admin@lists.netsys.com >X-BeenThere:

Has anyone around here heard of this ? ---Mike >Subject: Re: [Full-Disclosure] new ssh exploit? >From: christopher neitzert <chris@neitzert.com> >Reply-To: chris@neitzert.com >To: full-disclosure@lists.netsys.com >X-Mailer: Ximian Evolution 1.4.3.99 >Sender: full-disclosure-admin@lists.netsys.com >X-BeenThere: full-disclosure@lists.netsys.com

Hello, I am getting pretty poor rJava call performance > system.time(for (i in 1:1000) J("java.lang.Double")$parseDouble(as.character(i))) user system elapsed 4.884 0.000 4.900 i.e. 5 milliseconds per very simple call on a very fast cpu. JNI calls themselves are said to be pretty fast nowadays (10...40ns). It probably goes accross reflection but still doing pretty much

Does anyone know the practicality of this attack ? i.e. is this trivial to do ? ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet since 1994 www.sentex.net Cambridge, Ontario Canada

Is the version in FreeBSD vulnerable ? http://www.openssh.com/txt/release-4.4 I know version 1 is disabled by default, but if its not, does it impact the daemon ? ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing

Cisco released an advisory about their ntp client and server having a bug http://www.cisco.com/warp/public/707/NTP-pub.shtml Is there a common code base at all that would have relevance to the code in FreeBSD ? I noticed in the COPYRIGHT file cisco has made some contributions. ---Mike -------------------------------------------------------------------- Mike Tancsa,

An interesting paper http://www.acm.org/sigcomm/sigcomm2003/papers/p75-kuzmanovic.pdf ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet since 1994 www.sentex.net Cambridge, Ontario Canada www.sentex.net/mike

I dont have too many production RELENG_7 boxes post TOE MFC, but on the ones I do, apart from applying # diff -u src/sys/netinet/tcp_offload.c src/sys/netinet/tcp_offload.c.disable --- src/sys/netinet/tcp_offload.c 2008-07-31 18:25:51.000000000 -0400 +++ src/sys/netinet/tcp_offload.c.disable 2008-08-21 09:39:07.000000000 -0400 @@ -58,6 +58,8 @@ struct rtentry *rt;

Any chance someone can look at / commit the fix in PR 52349 before 4.9R ? Its a simple fix. As it is to netstat, I dont know of anyone who 'owns' that program to bug other than to make a general plea :-) ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications,

Thanks to Tor Egge for providing the binary patch and procedure below! ------- begin 644 3dmd.bpatch.144284 6#[IL)`0-N/L```#-@'+KA=)T`C'`PP`` ` end ------- The resulting 3dmd works with a STABLE as of today. Perhaps there should be a note in the port ? ---Mike >If you unpack the following snippet > >using uudecode, you should the following checksum: > >MD5