[jadmin] users perl library causing a jabberd2 crash
Simon Wilkinson
simon at sxw.org.uk
Tue Jul 25 18:51:32 CDT 2006
On 25 Jul 2006, at 23:03, Declan McMullen wrote:
> So I tested the perl file on my home server which is running s11
> the most recent, and it killed c2s there too.
>
> Is it normal for jabber to be able to be taken out like that ? I
> would have thought that if it got requests it didnt like it would
> just throw them away?
>
> Anyone know a way of safeguarding your server from dodgy libraries?
If the server is crashing due to input from a client it indicates a
server bug. There's a few things you could provide in order to help
track this down.
a) A core file from a non-stripped binary
b) A copy of the perl script (and associated libraries) that attacks
the server
If you've got the time to provide either of these, that would be a
great help.
Thanks,
Simon
More information about the JAdmin
mailing list