>Number:         6842
>Category:       kern
>Synopsis:       very nasty hangs uncovered by security tool
>Confidential:   yes
>Severity:       critical
>Priority:       high
>Responsible:    kern-bug-people (Kernel Bug People)
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Mon Jan 18 15:35:01 1999
>Last-Modified:
>Originator:     Wolfgang Rupprecht
>Organization:
W S Rupprecht Computer Consulting, Fremont CA
>Release:        NetBSD-current 1/5/99
>Environment:
	
System: NetBSD capsicum.wsrcc.com 1.3I NetBSD 1.3I (WSRCC) #0: Tue Jan 5 06:30:38 PST 1999 root@capsicum.wsrcc.com:/v/src/netbsd/NetBSD-current/usr/src/sys/arch/i386/compile/WSRCC i386


>Description:
	running the security scanner makes netbsd go "uhg".
>How-To-Repeat:
	ftp, compile, run the following:

		http://www.insecure.org/nmap/nmap-2.02.tgz

		nmap -O www.netbsd.org   ;-)

	The most visible effects of this tool are crashed routers (not
	a netbsd problem) and wedged X11 and xdm.  After an attack xdm
	is wedged and unkillable (via kill -9), and netbsd is pretty
	much insane.  I had to reboot to get back a workable system.

>Fix:

	unplug the ethernet, turn down the lights and chant.
	
	I've marked this PR as confidetial, and used bland subject and
	summary fields. Feel free to change it.  I just figured its
	easier to downgrade security than upgrade it.

>Audit-Trail:
>Unformatted: