[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#3383) large searches result in DoS attack

To: openldap-its@OpenLDAP.org
Subject: (ITS#3383) large searches result in DoS attack
From: quanah@stanford.edu
Date: Fri, 5 Nov 2004 04:22:33 GMT

Full_Name: Quanah Gibson-Mount
Version: 2.2.18
OS: Solaris 8
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (171.66.182.82)


I've found that when doing queries that have large return results, slapd will
consume all available resources on a system, in some cases leaving the system
unuseable (no available processes, no available memory, etc).  Other times,
slapd just dies when it runs out of resources.  This problem is present since at
least 2.2.17, and I believe it may be related to my earlier reported problems of
slapd suddenly segfaulting under 2.2.15 as well.

I'm currently working on a build to find out where the problem is occurring.

--Quanah

Prev by Date: Re: configuration exposure patch (ITS#3376)
Next by Date: (ITS#3384) slapd stops forking after the forked processes are hung on read(stdin)
Index(es):
- Chronological
- Thread