[systemd-devel] /run DoS

Michał Piotrowski mkkp4x4 at gmail.com
Sun Apr 3 16:09:59 PDT 2011


W dniu 3 kwietnia 2011 23:35 użytkownik Lennart Poettering
<mzerqung at 0pointer.de> napisał:
> On Sun, 03.04.11 23:28, Michał Piotrowski (mkkp4x4 at gmail.com) wrote:
>
>> > But for /dev/shm I see no quick fix... do you?
>>
>> Unfortunately not. No one foresaw that quota support on tmpfs will
>> someday be useful :)
>>
>> >
>> > I think we should fix either both or should wait for the proper fix by
>> > the kernel.
>>
>> Can you temporarily fix one?
>
> Well, of course we could.
>
> But, think about it, what does this help? The vulnerability doesn't go
> away by doing this, and we'd have a temporary hack in there, that we'd
> have to remove later on again.

Ok, I filled a bug report
https://bugzilla.redhat.com/show_bug.cgi?id=693253
I realize that Fedora kernel folks wont be happy about it but it's
always worth a try :)

>
> Lennart
>
> --
> Lennart Poettering - Red Hat, Inc.
>



-- 
Best regards,
Michal

http://eventhorizon.pl/


More information about the systemd-devel mailing list