Security considerations in PolicyKit-enabled daemons
David Zeuthen
david at fubar.dk
Tue Jul 14 08:55:46 PDT 2009
Hi again,
It's also worth remembering that the system bus daemon, in the default
install, does throttling and limits, see the <limit> directive in the
dbus-daemon(1) man page. It _probably_ means that you don't have to
worry about Denial Of Service at all in your service, that was the
rationale for adding these features to the bus daemon anyway (e.g. solve
the DoS problem in the bus daemon instead of doing it in each and every
system service). But it's definitely worth thinking about anyway.
David
More information about the polkit-devel
mailing list