Re: netkit-inetd in sarge

To: debian-devel@lists.debian.org
Subject: Re: netkit-inetd in sarge
From: Andrew Pollock <apollock@debian.org>
Date: Sun, 19 Oct 2003 13:37:58 +1000
Message-id: <[🔎] 20031019033758.GA8791@daedalus.andrew.net.au>
In-reply-to: <[🔎] 20031019013254.GN6350@dijkstra.csh.rit.edu>
References: <[🔎] 20031018010431.GA24906@daedalus.andrew.net.au> <[🔎] 20031018054051.GB6350@dijkstra.csh.rit.edu> <[🔎] 20031019004847.GA7663@daedalus.andrew.net.au> <[🔎] 20031019013254.GN6350@dijkstra.csh.rit.edu>

On Sat, Oct 18, 2003 at 09:32:54PM -0400, Matt Zimmerman wrote:
> On Sun, Oct 19, 2003 at 10:48:47AM +1000, Andrew Pollock wrote:
> 
> > On Sat, Oct 18, 2003 at 01:40:51AM -0400, Matt Zimmerman wrote:
> 
> Yes, it receives data from the network and throws it away.  But I don't see
> how this figures into your example.  If you can give me an scenario where
> this service would allow a malicious remote user to DoS anything other than
> the discard service itself, that would be interesting.  Otherwise, I'm
> inclined to say that it's quite harmless (and indeed useful).

Hmm, am I the only one that thinks

dd if=/dev/zero | nc victim discard

is a bad thing, in an environment where the victim is paying cents per meg 
for inbound traffic? I'm no so much talking about DoSing anything, but 
causing financial damage.

Andrew

Reply to:

Follow-Ups:
- Re: netkit-inetd in sarge
  - From: Cameron Patrick <cameron@patrick.wattle.id.au>
- Re: netkit-inetd in sarge
  - From: Matt Zimmerman <mdz@debian.org>

References:
- netkit-inetd in sarge
  - From: Andrew Pollock <apollock@debian.org>
- Re: netkit-inetd in sarge
  - From: Matt Zimmerman <mdz@debian.org>
- Re: netkit-inetd in sarge
  - From: Andrew Pollock <apollock@debian.org>
- Re: netkit-inetd in sarge
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: netkit-inetd in sarge
Next by Date: Re: netkit-inetd in sarge
Previous by thread: Re: netkit-inetd in sarge
Next by thread: Re: netkit-inetd in sarge
Index(es):
- Date
- Thread