<<< Date Index >>>     <<< Thread Index >>>

local denial of Service, Yellowdog linux to 3.0.1




Since they are releasing a new version....

Title: Local Denial of Service/render system unusable YelloDog Linux
Author: Phil Moses pmoses@xxxxxxxxxxxxxxxx
Date: June 4, 2004
------------------------------------------------
Summary:
Currently it seems that YellowDog is fairly easy to render unuseable, or what 
could be called launch a "local denial of service" on the operating system by 
filling the root disk to capacity and doing a "hard" reboot.
                                                                                
                               
                                                                                
                               
Description:
If the root filesystem is filled to capacity and the machine goes through an 
improper shutdown and is forced into an fsck, basically all hell breaks loose. 
It looks to me as if the file /etc/fstab attempts to write itself to a swap 
file and if the filesystem is full, replaces the original /etc/fstab with a 
zero sized file. It is possible to mount the root filesystem in rw mode and 
re-create the fstab file but until this is done, the system is not going to 
boot.
The YDL machines that I use are desktop machines that I have gathered for users 
and cannot be put under lock and key, meaning they could be unplugged at any 
time.
                                                                                
                               
Vulnerable Systems:
YDL 3.0.1 , possibly previous versions as well.