Firewalls: updated-secure-w#-daemons

Firewalls
(July 1995)

Indexed By Thread: [Previous] [Next]

Subject:	updated-secure-w#-daemons
From:	fc @ all . net (Dr. Frederick B. Cohen)
Date:	Sun, 9 Jul 1995 22:22:10 -0400 (EDT)
To:	firewalls @ greatcircle . com

	In formalizing our analysis of the secure W3 and gopher daemons
relative to denial of service attacks, we found some potentials for
abuse and made enhancements to prevent various forms of denial of
service via leaving open channels, creating too many requests resulting
in excessive file pointers leading to OS failures during allocation of
sparse resources, and other such things.  These fixes are available in
the new on-line version.

-> See:  Info-Sec Heaven using our New Super Secure World-Wide-Web Server
-> Free: Test your system's security (scans deeper than SATAN or ISS!)
---------------------- both at URL: http://all.net ----------------------
-> Read: "Protection and Security on the Information Superhighway"
	 John Wiley and Sons, 1995 ISBN 0-471-11389-1, 320 pp, $24.95
-------------------------------------------------------------------------
   Management Analytics - 216-686-0090 - PO Box 1480, Hudson, OH 44236

Indexed By Date	Previous:	Re: Programmable FTP?? From: Dan Cross <cross @ math . psu . edu>
Indexed By Date	Next:	Re: Jul 9 08:06:03 all inetd[122]: httpd/tcp server failing (looping), service terminated From: Kent Fitch <Kent . Fitch @ its . csiro . au>
Indexed By Thread	Previous:	Re: denial of services vs. denial of services From: Ted Doty <ted @ kgbvax . network . com>
Indexed By Thread	Next:	POP security From: todd @ momentum . com . au (Todd Hooper)