[ LUGOS-SEC ] Fwd: UDP packet handling weird behaviour of various
operating systems
Jure Koren
jure at kiss.uni-lj.si
Fri Jul 27 09:21:34 CEST 2001
On Fri, Jul 27, 2001 at 08:32:07AM -0400, David Klasinc wrote:
> Banzai!
> Nekaj dni nazaj na BugTraq...
> Zanimivo. :)
> 1. Linux 2.4.7 UP (pristine source, waiting for a new shiny Alan Cox patch)
> - system gets frozen after 3 seconds of flood on a gigabit link.
> Same result at a 100Mbps. The top utility shows (at least as long as it can)
> that system(kernel) gets 100% of the CPU in its march to death. Same for
Load se dvigne na 60%, steady. Masina je responsive tut po 5 minutah
floodanja.
> Linux kernel 2.2.19.
> 2. Linux 2.4.7 SMP (same origin)
> - the flood effect is distributed on the 2 CPUs (p3/1Ghz)
> at a ratio of 30-40% per processor. Linux SMP is superb, it implements
> load-sharing of everything, even DoS :)
Oba sta "properly protected" z local filtering rules.
Exploit ne deluje sploh. Avtor clanka omenja, da ipchains
ne pomagajo, well, they do.
> 5. Windows 2000 Professional UP.
> - systems gets an extra 60% load average payload over its
> initial one. It is still responsive to commands, doesn't choke a bit.
Load je 80%, steady, masina dela.
Danes je svetovni dan system administratorjev :).
--
Jure Koren | unix administrator
jure at kiss.uni-lj.si | gnu/Linux software developer
More information about the lugos-sec
mailing list