Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 14 Sep 2003 13:08:35 -0400 (EDT)
From:      Robert Watson <rwatson@FreeBSD.org>
To:        Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?= <des@des.no>
Cc:        cvs-all@FreeBSD.org
Subject:   Re: cvs commit: src/sys/kern kern_prot.c
Message-ID:  <Pine.NEB.3.96L.1030914130145.19668A-100000@fledge.watson.org>
In-Reply-To: <xzp3cezpcg9.fsf@dwp.des.no>

next in thread | previous in thread | raw e-mail | index | archive | help

On Sun, 14 Sep 2003, Dag-Erling Sm=F8rgrav wrote:

> Robert Watson <rwatson@FreeBSD.org> writes:
> > That said, to be frank, no, I'm not sure I want to do this.  But I also
> > want to make sure we don't break important applications.
>=20
> What about important applications that rely on the fact that
> unprivileged users can't send SIGALRM to privileged processes?  That
> used to be the case for ping(8) (though I don't think it is any more),
> and there may be others.  Shouldn't we err on the side of caution?=20

Well, until 5.x, this limit didn't exist, so right now I think this is
still a question of "how conservative to we want to be relative to the
status quo".  I agree in principle, but we should get the Diablo port
(software?) fixed first.

Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
robert@fledge.watson.org      Network Associates Laboratories




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1030914130145.19668A-100000>