Date: Fri, 18 Feb 2000 10:56:07 -0500 (EST) From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> To: Mark Murray <mark@grondar.za> Cc: current@FreeBSD.org Subject: Re: Crypto progress! (And a Biiiig TODO list) Message-ID: <200002181556.KAA86357@khavrinen.lcs.mit.edu> In-Reply-To: <200002180743.JAA26529@gratis.grondar.za> References: <20000218062947.B0DDE1CD9@overcee.netplex.com.au> <peter@netplex.com.au> <200002180743.JAA26529@gratis.grondar.za>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Fri, 18 Feb 2000 09:43:03 +0200, Mark Murray <mark@grondar.za> said: > o A username may only be checked $number times per $timeperiod; > after that, _all_ answers are silently converted to "no". Easier: a username may only be checked by a process running as $uid or by root. > ... etc. There are possibilities for DoS attacks, but the daemon > talks only to a Unix Domain Socket, so finding the perp is easy. And what happens when the daemon is dead, has crashed, or was never started? -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200002181556.KAA86357>