[Samba] [SECURITY] Samba 3.0.1 - 3.0.22: memory exhaustion
DoSagainst smbd
Gerald (Jerry) Carter
jerry at samba.org
Thu Jul 20 20:10:44 GMT 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gautier, B (Bob) wrote:
>> -----Original Message-----
>>
>> ==========================================================
>> ==
>> == Subject: Memory exhaustion DoS against smbd
>> == CVE ID#: CAN-2006-3403
> While we wait for this patch to get backported into 3.0.10
> as a RHEL4 update, will setting the 'max connections'
> parameter on all shares work around this problem?
The problem is that a 'max connections' would limit
the total connections and what you really want to limit
is the share connections per smbd. If could set
something like "max connections = 10000" in [global]
to set a ceiling but you will take a slight performance
hit for it.
cheers, jerry
=====================================================================
Samba ------- http://www.samba.org
Centeris ----------- http://www.centeris.com
"What man is a man who does not make the world better?" --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
iD8DBQFEv+NEIR7qMdg1EfYRAsa1AKDFV1dnX+HSVVM+S+RjSBV9S85otwCfRniQ
ajxDm1Io1ptpGPo98ZJZ1/k=
=FK96
-----END PGP SIGNATURE-----
More information about the samba
mailing list