SMBLoris on Linux

The latest code from Martin Hector https://gist.github.com/marcan/6a2d14b0e3eaa5de1795a763fb58641e

Brings Debian Linux  8/9  (x64) running Samba  to its knees

After we stop the attack the system is lagging still

So lets see how we can fix this ..

Hector writes that it is sufficient to do the following

However he has a typo in the tweet. The correct setting should be

[global] 
max smbd processes = 1000

Here is the video of the attack on the up2date stock Debian Samba without the above option

And here with max smbd processes = 1000 enabled under [global]

Advertisements
Gallery | This entry was posted in Uncategorized. Bookmark the permalink.

One Response to SMBLoris on Linux

  1. Pingback: IT Security Weekend Catch Up – August 5, 2017 – BadCyber

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s