[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

[linux-security] Re: [RHSA-1999:055-01] Denial of service attackin syslogd

From: Pavel Kankovsky <peak argo troja mff cuni cz>
To: S/lawek /Lawicki <slawicki unisoft com pl>
Cc: linux-security redhat com
Subject: [linux-security] Re: [RHSA-1999:055-01] Denial of service attackin syslogd
Date: Mon, 22 Nov 1999 21:46:23 +0100 (MET)

On Mon, 22 Nov 1999, S/lawek /Lawicki wrote:

> Can someone give me some more information about it? After upgrade sysklogd
> to sysklogd-1.3.31-1.5.i386.rpm, I lost some information from the log
> files (like logs about incoming mail in /var/log/maillog), and some
> messages are displayed directly on a console (like who is logging in).

The syslogd client in question (mail daemon?) continues using the obsolete
communication protocol that does not work any longer because:
1. has not been restarted to load the new libc.so, 2. is statically linked
with an old version of libc, 3. is using its own implementation of
syslog().

--Pavel Kankovsky aka Peak  [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."

Follow-Ups:
- [linux-security] Re: [RHSA-1999:055-01] Denial of service attack in syslogd
  - From: Olaf Kirch

References:
- [linux-security] Re: [RHSA-1999:055-01] Denial of service attack insyslogd
  - From: S/lawek /Lawicki

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]