Re: potential DoS of tcplogd in package iplogger

To: debian-security@lists.debian.org
Subject: Re: potential DoS of tcplogd in package iplogger
From: gb@jill.westfalen.de (Georg Bauer)
Date: Mon, 15 Nov 1999 21:39:44 GMT
Message-id: <[🔎] FL9DI8.J6F@goggle.westfalen.de>
In-reply-to: <[🔎] 4.2.0.58.19991115085739.00a55c30@mailserv.tem.nhl.nl>

In article <[🔎] 4.2.0.58.19991115085739.00a55c30@mailserv.tem.nhl.nl>,
	Onno <ebbin200@tech.nhl.nl> writes:
> Hmmm, this means that running tcplogd is a security hazard...

Yes, definitely. iplogger should be purged from the distribution. Use
ippl from potato (fetch the source and recompile for slink usage). ippl
does the same tcplogd does, but better and with fewer resources.
Actually it does more, since it can log udp packages, too.

bye, Georg ("attacked" himself once when he checked his firewall with a
port scanner ;-) )

Reply to:

References:
- Re: potential DoS of tcplogd in package iplogger
  - From: Onno <ebbin200@tech.nhl.nl>

Prev by Date: Re: Dial-in mgetty line security
Next by Date: Bug#50498: Buffer overflow in openssh pam adapter
Previous by thread: Re: potential DoS of tcplogd in package iplogger
Next by thread: bind / named
Index(es):
- Date
- Thread