[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    Linux inetd..
From:       moOd <mood () INVALID ! ORG>
Date:       1997-11-30 14:19:50
[Download RAW message or body]

Description:

  I've found that inetd on (*atleast*) Debian distribution of LiNUX crashes
  when port 13 (daytime) / port 37 (time) is "half-open scanned"..


  Half-open scanning means that you:

    1) send SYN
    2) if reply is SYN|ACK, send RST  = port is listening
    3) if reply is RST                = port is not listening


  I'm not skilled enough to write the code-piece for you to test this out,
  but most of the new portscanner include this type of scanning method.
  (scantcp 1.32, sirc, etc.)


Quick & dirty workaround:

  Comment out daytime & time services from /etc/inetd.conf and restart inetd.



- -------

  / moOd [@invalid.org]

[prev in list] [next in list] [prev in thread] [next in thread]