Barry A. Warsaw ba...@python.org added the comment:
I'm okay classifying this as a security bug that should be fixed in the 2.6
tree.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
Giampaolo Rodola' g.rod...@gmail.com added the comment:
Fixed for Python 2.6 in r87123.
Closing out as fixed.
--
resolution: - fixed
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com added the comment:
No, it isn't in 2.6 branch.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
___
Giampaolo Rodola' g.rod...@gmail.com added the comment:
You're right, I'm sorry. I looked at Versions field which has 2.6 set but
it's not correct.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
Giampaolo Rodola' g.rod...@gmail.com added the comment:
Reopening. I'll backport this at some point during this week, I hope.
--
resolution: fixed -
status: closed - open
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
Giampaolo Rodola' g.rod...@gmail.com added the comment:
This is already in 2.6 branch.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
___
Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com added the comment:
Security fixes are allowed in 2.6 branch, so could you backport the fix also to
2.6 branch?
--
versions: +Python 2.6
___
Python tracker rep...@bugs.python.org
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
___
Giampaolo Rodola' g.rod...@gmail.com added the comment:
Fixed in r84289.
--
resolution: - fixed
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue9129
___
Giampaolo Rodola' g.rod...@gmail.com added the comment:
Being not easy to patch asyncore in a retro-compatible way here's a patch for
smtpd instead which can be applied to python 2.7, 3.1 and 3.2.
Tested with nmap as shown in my first message on both Linux and FreeBSD and not
exceptions are
New submission from Giampaolo Rodola' g.rod...@gmail.com:
Steps to reproduce the issue:
- in one shell run: python -m smtpd -n
- in another one run: for i in {1..1000};do nmap -sT -p 8025 localhost;done
The server will print out the following output and just quit (DoS):
Giampaolo Rodola' g.rod...@gmail.com added the comment:
It would be ideal to solve this issue in asyncore.py by fixing
dispatcher.accept() once and for all, but I'm not sure whether this can be done
in a fully retro-compatible way in terms of asyncore API.
Alternatively
12 matches
Mail list logo