- Vince Vielhaber <[EMAIL PROTECTED]>:
| But how many would it take for DoS? Use up all the inodes?
Yep.
| Still no mail would be lost AFAICT.
Nope.
Anyway, the issue here (in the case of qmail) is not so much with the
DoS attack as with the fact that finger pointing can be very difficult
doe to the ownership of the queue files. There are other DoS attacks
available to a local user if he doesn't mind being found out, for
example create a .qmail file containing
|sleep 86400
and send more than (concurrencylocal) messages to the corresponding
address. Then local deliveries will not happen for the next 24 hours,
unless a system administrator investigates and deals with the problem.
- Harald
