Red Hat Bugzilla – Bug 44722
Security: internal time service in inetd 0.16-7 causes TIME_WAITs in netstat report and can lead to denial of service
Last modified: 2008-05-01 11:38:00 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.7 [en] (Win98; U)
Description of problem:
When operating the time service on the new -7 release of inetd, my netstat still shows many lingering connections. This bug was a hot topic
inetd.0.16-5 or so, and rumoured ot be fixed with -7.
[root@atlas /root]# rpm -q inetd redhat-release
[root@atlas /root]# netstat | grep time
tcp 0 5 client-151-198-10-:time ip-132147060.newje:2536 FIN_WAIT1
tcp 0 0 client-151-198-10-:time ip-132147060.newje:2535 TIME_WAIT
...... about 50 lines ....
tcp 0 0 client-151-198-10-:time ip-132147060.newje:2458 TIME_WAIT
Steps to Reproduce:
2.activate the time service
3.hit with a time client a few times.
this error may or may not occur with http://www.platypus.bc.ca/~bishop/software/inetdfix/inetd-0.16-6.i386.rpm . It was used successfully to fix
a problem in the official RHL62 version that resembled this new bug.
Created attachment 21182 [details]
rpm and netstat output showing the bug in action on my server.
*** This bug has been marked as a duplicate of 16729 ***