Date: Wed, 26 Oct 2016 12:03:23 +0200 From: CeDeROM <cederom@tlen.pl> To: =?UTF-8?Q?Dag=2DErling_Sm=C3=B8rgrav?= <des@des.no> Cc: "Robert N. M. Watson" <rwatson@freebsd.org>, freebsd-security@freebsd.org, Pawel Jakub Dawidek <pjd@freebsd.org> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-16:15.sysarch [REVISED] Message-ID: <CAFYkXjmYCLyQi-PHNtcP2-AALH=2QRwAWBoQDtypUvBtekTFag@mail.gmail.com> In-Reply-To: <868ttbwio9.fsf@desk.des.no> References: <20161025173641.BCDFD1911@freefall.freebsd.org> <20161026042748.GG60006@garage.freebsd.pl> <CAGMYy3v8KxuQfou0SmUNikghH-9NWfneoMPP_15F85WkDaUhKg@mail.gmail.com> <20161026061504.GH60006@garage.freebsd.pl> <0717BEFA-4E65-4990-AC50-FD80681C110C@FreeBSD.org> <CAFYkXjn39kKzcTY-pJObaVz8OGqbzCHE69kYAmRYtz5OX2kpAQ@mail.gmail.com> <868ttbwio9.fsf@desk.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 26, 2016 at 11:42 AM, Dag-Erling Sm=C3=B8rgrav <des@des.no> wro= te: > CeDeROM <cederom@tlen.pl> writes: >> Robert N. M. Watson <rwatson@freebsd.org> writes: >> > In general, my strong recommendation is against issuing advisories >> > for local denial-of-service attacks, (..) >> I would prefer to get that information regardless of individual >> preferences. > > It's not a matter of individual preference. During my time as so@ (and > Simon's before me), this was an explicit policy. The reason is that, as > Robert points out, there are a million ways for a trusted unprivileged > user to cause a DoS, and most of them aren't even bugs. Some of them > can be mitigated using quotas or resource limits, but far from all. Maybe a dedicated place/list for those..? That would be also good source of recommendations on how to protect a system.. something like CIS Benchmarks? :-) --=20 CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFYkXjmYCLyQi-PHNtcP2-AALH=2QRwAWBoQDtypUvBtekTFag>