> > I remember a silly script I tried. It was a recursive script that was
> > creating a directory, then moved itself in that directory, then run again ...
> > and again.
> "security hole!" no.
Indeed, that's not a hole. It's a misconfiguration.
> If one is silly enough to simply execute a script without seeing what it
> does "first" then the person who executes the script is the "security hole!"
And if you cannot trust the user "quota" is your friend...
> Sounds to me like a simple;
> cd /dir {which was created by the script}
> rm -rf *
Doesn't work because "rm" tries to build the whole path -- which
soon gets longer than PATH_MAX. You need to write a small script
that descends down the tree step by step until it reaches the last
directory, removes that directory, goes up one directory, etc.
An other well-known DoS is the fork bomb -- probably combined with
allocating lots of memory. ulimit(3) comes into play here.
73,
Joerg Reuter http://poboxes.com/jreuter/
And I make my way to where the warm scent of soil fills the evening air.
Everything is waiting quietly out there.... (Anne Clark)
PGP signature
