Possible DoS in mpd 5.6 pppoe server

Marcelo Gondim gondim at bsdinfo.com.br
Sat Apr 20 17:26:14 UTC 2013


Em 20/04/13 13:10, Eugene Grosbein escreveu:
> On 20.04.2013 20:21, Marcelo Gondim wrote:
>> Hi all,
>>
>> I'm doing tests with mpdas pppoeserver. Tried to simulate an attack of
>> 1000 connections using an incorrect login and after a certain time can
>> cause a kernel panic in the system. Below the panicgenerated:
>>
>> http://pastebin.com/nUXGVR3y
> You seem to use dummynet and the problem is not in mpd/pppoe code,
> it's it the dummynet code. Look at http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/162558
> for workarounds.
Ok  :)  I will try this:

- net.isr.bindthreads=1 in /boot/loader.conf;
- net.isr.direct=1 and net.isr.direct_force=1 in /etc/sysctl.conf


More information about the freebsd-stable mailing list