Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm not sure this is the right place to put this, but here it goes:
A few hours ago, I was stuck on programing assignment, and decided to visit the good old QuakeNet and ask for help. I joined a appropriate channel, and got a couple of good answers to my newbie question. Suddenly my computer froze solid, and it would not react to anything. X didn't react to Ctrl+Alt+Backspace, not Ctrl+Alt+Del, so I had to turn it off using the power button.
This is the first time my computer freezes like this, the log files did not reveal any HW errors. Is it possible that someone in the channel did not like my level of Java skill, and flooded me to disconnect?
By the way; Im using slackware 13.1 with the default kernel (2.6.33.4) and irssi as IRC client.
I know that if you eg. ICMP-flood someone, the traffic will be denied and, but can it provoke other behavior from the computer?
So my question is; can a IRC flood/DDoS attack cause a computer to freeze sub zero?
There is an IRC exploit that is designed to affect vulnerabilities in Cisco/Linksys firmware. I'm not aware of any exploits that affect Linux systems in the manner you described, though. I doubt it was a DDoS, but it was more than likely some type of DoS.
Without some sort of bug, it's unlikely that a system would completely freeze under a DoS. I suppose it's possible to overload a computer by making it handle all of the packets from the DoS, but to be honest, I would doubt that any reasonably modern computer could be made unusable by a DoS on any residential (I'm making an assumption there) internet connection. Even at ~25Mb/s, I doubt it would break a sweat.
A DoS doesn't have to consist of large amounts of packets. It can be one specially crafted packet that chokes up the system. It can be a 500-character URL that chokes a web server. I've seen such DoS attacks work. On modern systems even. Even residential. In fact, most DoS exploits work because of existing bugs in code...they don't even have to be 0-day.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.