Date: Sat, 4 Sep 1999 20:07:17 -0400 (EDT) From: "Brian F. Feldman" <green@FreeBSD.org> To: Mike Tancsa <mike@sentex.net> Cc: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>, freebsd-security@FreeBSD.org Subject: Re: FW: Local DoS in FreeBSD Message-ID: <Pine.BSF.4.10.9909042006200.76486-100000@janus.syracuse.net> In-Reply-To: <4.1.19990901191051.04e80570@granite.sentex.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 1 Sep 1999, Mike Tancsa wrote: > >We have known for some time that the problem originally described > >exists, but developing an acceptable solution has been a challenge. > >Now that sockets carry around user credentials, it may perhaps not be > >as difficult as it used to be. > > > >What needs to be done is to impose a per-UID resource limit on the > >amount of socket buffer space available. > > > Do you think these changes would be incorporated into the 3.x branch, or > strictly 4.x ? Both. The basis necessary (so_cred) is in both, but I need to change it to a ucred (it really should be a ucred, not a pcred.) That change is one of the changes I've made in my diffs I posted an address to. > > ---Mike > ********************************************************************** > Mike Tancsa, Network Admin * mike@sentex.net > Sentex Communications Corp, * http://www.sentex.net/mike > Cambridge, Ontario * 01.519.651.3400 > Canada * > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > -- Brian Fundakowski Feldman / "Any sufficiently advanced bug is \ green@FreeBSD.org | indistinguishable from a feature." | FreeBSD: The Power to Serve! \ -- Rich Kulawiec / To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9909042006200.76486-100000>