Re: TCPwrappers race condition

der Mouse (mouse@RODENTS.MONTREAL.QC.CA)
Thu, 02 Oct 1997 22:14:51 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Phillip Hallam-Baker: "Re: IE4 and channels"
Previous message: Tatu Ylonen: "Ulrich Flegel's SSH/X11 "vulnerability""
Maybe in reply to: Thamer Al-Herbish: "TCPwrappers race condition"
Next in thread: Nicolai E M Plum: "Re: TCPwrappers race condition"

> TCPwrappers do a getpeername() after bieng passed the socket
> descriptor from inetd. On some OSs this can cause a problem, atleast
> on SCO. [...if the FIN arrives before the getpeername(), "unknown"
> gets logged...]

> Unfortunately this is a design issue, TCPwrappers "cant" be fixed to
> do this without modification to inetd.

This is a kernel bug, I would say. Just because the other end has
closed down its side of the connection is no excuse to throw away the
peer address information (or to refuse to deliver it to user-land,
which amounts to the same thing).

der Mouse

mouse@rodents.montreal.qc.ca
7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B

Next message: Phillip Hallam-Baker: "Re: IE4 and channels"
Previous message: Tatu Ylonen: "Ulrich Flegel's SSH/X11 "vulnerability""
Maybe in reply to: Thamer Al-Herbish: "TCPwrappers race condition"
Next in thread: Nicolai E M Plum: "Re: TCPwrappers race condition"