Re: PTY DOS vulnerability?

H. Peter Anvin (hpa@zytor.com)
2 Jul 2003 18:52:21 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Chris Mason: "Re: Status of the IO scheduler fixes for 2.4"
Next message: Larry McVoy: "Re: [RFC] My research agenda for 2.7"
Previous message: Teemu Tervo: "[PATCH] 2.5.74 - POSIX head & tail"
Maybe in reply to: Fredrik Tolf: "PTY DOS vulnerability?"

Followup to: <03070220143600.04348@tabby>
By author: Jesse Pollard <jesse@cats-chateau.net>
In newsgroup: linux.dev.kernel
> >
> > Isn't this something a improved sshd could do? I.e. if the
> > connection using up the last (or one of the last) pty's logs
> > in as non-root - just kill it.
>
> and how is it to determine that it is the last?
> try two and die if the second fails???
> at least one system just creates more ptys...
>

Viro's working on it... but as someone else pointed out,
"ssh root@machine bash -i" works great without any ptys. You don't
have all features, but enough to nuke whatever it is that's eating
them all.

-hpa

-- 
<hpa@transmeta.com> at work, <hpa@zytor.com> in private!
"Unix gives you enough rope to shoot yourself in the foot."
Architectures needed: ia64 m68k mips64 ppc ppc64 s390 s390x sh v850 x86-64
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Chris Mason: "Re: Status of the IO scheduler fixes for 2.4"
Next message: Larry McVoy: "Re: [RFC] My research agenda for 2.7"
Previous message: Teemu Tervo: "[PATCH] 2.5.74 - POSIX head & tail"
Maybe in reply to: Fredrik Tolf: "PTY DOS vulnerability?"