[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Raq2 email DOS issue

Subject: [cobalt-users] Raq2 email DOS issue
From: flash22@xxxxxxx
Date: Mon Feb 19 18:38:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Ok, in poking about on a raq 2 i found something interesting, both 'news'
and 'mail' had recieved email (spam).

Aside from the fact that this is silly, it raises a more serious issue,
because those users, and the mail group, have unlimited quota, so someone
could in theory mailbomb the server and fill the disk :(

[root mail]# quota -g news
Disk quotas for group news (gid 13): none
[root mail]# quota -g mail
Disk quotas for group mail (gid 12): none
[root mail]# quota -u mail
Disk quotas for user mail (uid 8): none
[root mail]# quota -u news
Disk quotas for user news (uid 9): none

In addition i seem to be able to address mail to other privilaged users
like 'lp' ...

My 'quick fix' is to leave the spool files and zero perms, but this is
admittidly not pretty-

I suppose i have to go through the entire password file looking for stupid
things people can email to and add them all to the access tables, yeash

Cobalt: This is *sloppy* :(

gsh

ps: stray thing, 'listserv' is listed as a trusted user in .ct but isn't
exposed in .cf - hmm, is this normal ?

Follow-Ups:
- Re: [cobalt-users] Purple? I prefered it blue - [was -Raq2 email DOS issue ]
  - From: Ricky Blaikie

Prev by Date: Re: [cobalt-security] [cobalt-users] bind updates running as root
Next by Date: RE: [cobalt-users] Cobalt to provide compensation for server hack?
Previous by thread: [cobalt-users] Telnet: Unable to load interpreter
Next by thread: Re: [cobalt-users] Purple? I prefered it blue - [was -Raq2 email DOS issue ]

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index