lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <42FDEAED.3040900@gentoo.org>
Date: Sat Aug 13 13:52:08 2005
From: amne at gentoo.org (Wernfried Haas)
Subject: bash vulnerability?

Hi,
Shari Vegas wrote:
> This vulnerability for right now should be classified as a zero-day local
> shell exploit for bash.
Not exactly a zero day exploit, but a so called fork bomb [1], which has 
been known for quite a while.
Searching the web for "fork bomb" should reveal lots of discussion about 
it as well how to prevent it (e.g. setting limits as you already noticed).

[1] http://en.wikipedia.org/wiki/Fork_bomb

cheers,
	Wernfried

-- 
Wernfried Haas (amne)
Gentoo Forums: http://forums.gentoo.org
Contact the forums team: IRC: #gentoo-forums on freenode or
forum-mods at gentoo dot org

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ