From: Kevin Pietersma (Kevin.Pietersma@mbs.gov.on.ca)
Date: Thu Jun 12 2003 - 19:57:52 EDT
If they have created the /var partition as part of the / partition. Without a separate /var partition you can fill up the root partition if they're already a little pressed for space. Learned the hard way in a previous life, but rolled it into our server build and hardening guides.
kev
>>> <steve.x.jones@royalmail.com> 06/12/03 07:23am >>>
Hello
Please can you help? Has any-one else out there had issues with NMAP port scans
(or any other port scanner) causing systems to crash?
I use Nessus to baseline the security of our systems and have twice had problems
caused by the NMAP port scan on clustered unix boxes running our enterprise
applications. NOTE - it was the initial port scan that caused the problems, not
the subsequent vulnerability assessment.
I've done a quick Google search and found confirmation for one of the systems -
BUGTRAQ Vulnerability 3358, "IBM HACMP Port Scan Denial of Service Vulnerability",
the other was a bespoke app running on some HP UX boxes.
Does any-one know of other systems that fall over with a simple port scan?
Up til now I've been running port scans happily across our subnets to look for
rogue FTP, SMTP, HTTP etc, obviously I'll have to take more care now...
Thanks in advance for any help.
Steve
This email and any attachments are confidential and intended for the addressee
only. If you are not the named recipient, you must not use, disclose, reproduce,
copy or distribute the contents of this communication. If you have received this
in error, please contact the sender and then delete this email from your system.
---------------------------------------------------------------------------
----------------------------------------------------------------------------
---------------------------------------------------------------------------
----------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:34 EDT