[systemd-devel] /run DoS

Bruno Wolff III bruno at wolff.to
Sun Apr 3 14:25:47 PDT 2011


On Sun, Apr 03, 2011 at 23:22:06 +0200,
  Michał Piotrowski <mkkp4x4 at gmail.com> wrote:
> W dniu 3 kwietnia 2011 23:11 użytkownik Bruno Wolff III
> <bruno at wolff.to> napisał:
> > On Sun, Apr 03, 2011 at 23:05:52 +0200,
> >  Michał Piotrowski <mkkp4x4 at gmail.com> wrote:
> >>
> >> Of course it will be the best solution. But I doubt it will happen in
> >> a next few weeks - so some temporary workaround for F15 would be
> >> appreciated. It seems to me that this is a too serious problem to
> >> release F15 without fixing/workarounding it somehow.
> >
> > tempfs is backed by swap, so this shouldn't be that big of a deal.
> 
> I filled free space on /run and I was not able to start services. So I
> guess that it might be a problem on some systems. ()

I was thinking of the case where it was spilt into two. You are correct,
the current situation isn't good.

> > Local
> > users have other ways to try to kill system performance.
> >
> 
> Yes, but it is not about performance - IMO in some cases it may be
> qualified as local DoS.

You are right, I was thinking of where there was a separate tmpfs for
the /run/user directory and there could be a lot of memory pressure,
but system services would still be able to run.


More information about the systemd-devel mailing list