From owner-doc-jp-work@jp.FreeBSD.org Tue Mar  9 01:16:39 2004
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id i28GGdg99814;
	Tue, 9 Mar 2004 01:16:39 +0900 (JST)
	(envelope-from owner-doc-jp-work@jp.FreeBSD.org)
Received: from smtp.eos.ocn.ne.jp (eos.ocn.ne.jp [211.6.83.117])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id i28GGd799809
	for <doc-jp-work@jp.FreeBSD.org>; Tue, 9 Mar 2004 01:16:39 +0900 (JST)
	(envelope-from hrs@eos.ocn.ne.jp)
Received: from delta.allbsd.org (p54152-adsao12honb4-acca.tokyo.ocn.ne.jp [220.96.136.152])
	by smtp.eos.ocn.ne.jp (Postfix) with ESMTP id 0EB91D91
	for <doc-jp-work@jp.FreeBSD.org>; Tue,  9 Mar 2004 01:16:39 +0900 (JST)
Received: from localhost (alph.allbsd.org [192.168.0.10])
	by delta.allbsd.org (8.12.9p2/8.12.9) with ESMTP id i28GGHA2090033
	for <doc-jp-work@jp.FreeBSD.org>; Tue, 9 Mar 2004 01:16:18 +0900 (JST)
	(envelope-from hrs@eos.ocn.ne.jp)
Message-Id: <20040309.011535.85395435.hrs@eos.ocn.ne.jp>
To: doc-jp-work@jp.FreeBSD.org
From: Hiroki Sato <hrs@eos.ocn.ne.jp>
In-Reply-To: <20040308.224844.74747362.rushani@bl.mmtr.or.jp>
References: <200403021955.i22Jti60024050@freefall.freebsd.org>
	<20040308.073548.133830425.hrs@eos.ocn.ne.jp>
	<20040308.224844.74747362.rushani@bl.mmtr.or.jp>
X-PGPkey-fingerprint: BDB3 443F A5DD B3D0 A530  FFD7 4F2C D3D8 2793 CF2D
X-Mailer: Mew version 4.0.62 on Emacs 21.3.1 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Reply-To: doc-jp-work@jp.FreeBSD.org
Precedence: list
Date: Tue, 09 Mar 2004 01:15:35 +0900
X-Sequence: doc-jp-work 843
Subject: [doc-jp-work 843] Re: [FreeBSD-Announce] FreeBSD Security
 Advisory FreeBSD-SA-04:04.tcp
Sender: owner-doc-jp-work@jp.FreeBSD.org
X-Originator: hrs@eos.ocn.ne.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+040307

$B:4F#!wEl5~M}2JBg3X$G$9!#(B

Hideyuki KURASHINA <rushani@bl.mmtr.or.jp> wrote
  in <20040308.224844.74747362.rushani@bl.mmtr.or.jp>:

rushani> > III. $B1F6AHO0O(B - Impact
rushani> > 
rushani> > A remote attacker may conduct a low-bandwidth denial-of-service attack
rushani> > against a machine providing services based on TCP (there are many such
rushani> > services, including HTTP, SMTP, and FTP).  By sending many
rushani> > out-of-sequence TCP segments, the attacker can cause the target machine
rushani> > to consume all available memory buffers (``mbufs''), likely leading to
rushani> > a system crash.
rushani> > 
rushani> > $B%j%b!<%H$N967b<T$O!"(BTCP $B$r;H$C$?%5!<%S%9(B (HTTP, SMTP, FTP $B$J$I!"(BTCP
rushani> > $B$r;H$C$?%5!<%S%9$O?tB?$/$"$j$^$9(B) $B$rDs6!$7$F$$$k%^%7%s$KBP$7$F!"(B
rushani> > $B$"$k<o$NDcB.%5!<%S%9K832967b$r$*$3$J$&$3$H$,$G$-$^$9!#(B
rushani> 
rushani> $B>r7o$,!V%Q%1%C%H=g$,$P$i$P$i$N(B TCP $B%;%0%a%s%H$rB??tAw$jIU$1$k$3$H!W$@$1(B
rushani> $B$J$i=y!9$K%5!<%S%9K832>uBV$K$9$k$3$H$b(B, $B=V;~$K$=$N$h$&$J>uBV$K$9$k$3$H$b(B
rushani> $B$G$-$k$h$&$K;W$$$^$9(B.

 low-bandwidth DoS attack $B$H$$$&$N$O!"967b$N%H%j%,$K$J$k%H%i%U%#%C%/$N(B
 $B%G!<%?NL(B/$B;~4V$,Dc$$$H$$$&%?%$%W$N(B DoS attack (stack smashing $B$H$+$b!"(B
 $B$3$N%?%$%W$KJ,N`$5$l$k$O$:(B) $B$@$HM}2r$7$F$$$k$N$G!"$=$l$,4V0c$C$F$$$J$1$l$P(B
 $B=Q8l$H$7$F07$&$Y$-$@$H;W$$$^$9!#(B

rushani> >  04:04 $B$G$9!#(Ba low-bandwidth DoS attack $B$NLu8l$,(B
rushani> >  $B$$$^$$$A$J$N$G!"$40U8+Jg=8!#(B
rushani> 
rushani> $BK\Mh<u$1IU$1$k$3$H$,$G$-$k@\B3?t$h$j$b(B, $B967b$K$h$C$F@\B3?t$rITEv$K(B
rushani> $B>/$J$$>uBV$K$5$;$i$l$F$7$^$&2DG=@-$,$"$k$H$$$&$3$H$G(B, $B$=$N$^$^Lu$7$F(B
rushani> $B!VDcBS0h!W$^$?$O!V(BTCP $B@\B3$r:$Fq$K$9$k!W$G$O$I$&$G$9$+(B.

 $B$&!<$s!"69BS0h!A$H$+DcB.!A$H$$$&I=8=$@$H868l$K6a$$$N$G$9$,!"(B
 $BF|K\8l$K$9$k$H2?$J$N$+$h$/J,$+$i$J$$46$8$J$N$,$R$C$+$+$C$F$k$s$G$9$h$M!#(B

 $B4{B8$NLu$,$J$$$+C5$7$F$$$k$N$G$9$,!"$I$&$b8+$D$+$i$J$$$N$G(B
 $BBS0hHsK0OB7?%5!<%S%9K832$H$+!"$=$&$$$&MQ8l$r$D$/$C$F(B () $B$G(B
 $B868lJ;5-$9$k$N$,$$$$$+$J$H9M$($F$$$^$7$?!#(B

 $B$^$@LB$C$F$$$k$N$G!"$b$&>/$7G:$s$G$_$^$9!#(B3/9 $B$NM<J}$^$G$K$O(B
 $B8x3+$K$^$o$;$k$h$&$K$9$k$D$b$j$G$9!#(B

--
| $B:4F#(B $B9-@8!wEl5~M}2JBg3X(B
