Re: Sendmail DOS
On Thu, 22 Feb 2001 12:59:06 Jean-Francois JOLY wrote:
| Hello Everybody,
| I've ran Nessus against some servers and it reports me that
| is vulnerable to a Syn Flood. I've grabbed utilities to test the
| vulnerabilitie and haven't succeed to reproduce the problem.
| I've found no information about this vulnerabilitie.
| Do you know if this is a true problem or just a false report ?
| In my configuration, Sendmail is run as a standalone daemon.
| Should I include it in Xinetd to stop the Problem ?
Somehow I don't think its necessary (I could be wrong).
Look in /etc/<mail/>sendmail.cf for:
# load average at which we refuse connections
# maximum number of children we allow at one time
# maximum number of new connections per second
Any of the above options should be able to prevent a DoS, from
their description, if they are implemented correctly. At least,
they'll offer as much protection as inetd can. I've used them
before when a mail script when crazy and caused too many
Anyway, Debian Potato ships with Exim, not sendmail.
| Best regards,
| Jean-Francois mailto:email@example.com
| To UNSUBSCRIBE, email to firstname.lastname@example.org
| with a subject of "unsubscribe". Trouble? Contact
Berend De Schouwer, +27-11-712-1435, UCS