lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20090128045534.GA7571@brong.net>
Date:	Wed, 28 Jan 2009 15:55:34 +1100
From:	Bron Gondwana <brong@...tmail.fm>
To:	Davide Libenzi <davidel@...ilserver.org>
Cc:	Ray Lee <ray-lk@...rabbit.org>, Bron Gondwana <brong@...tmail.fm>,
	Linux Kernel Mailing List <linux-kernel@...r.kernel.org>,
	Greg KH <gregkh@...e.de>,
	Andrew Morton <akpm@...ux-foundation.org>
Subject: Re: [PATCH 1/3] epoll: increase default max_user_instances to 1024

On Tue, Jan 27, 2009 at 08:14:36PM -0800, Davide Libenzi wrote:
> On Tue, 27 Jan 2009, Ray Lee wrote:
> > Userspace is not broken here, and the whole idea of a -stable series
> > is that administrators can upgrade to them without having to worry
> > about things getting broken or making specific configuration changes
> > by point release.
> 
> The reason Greg took it, was that in a multiuser systems, that's a DoS 
> EZ-PZ Lemon Squeezie.

Ok - we're at an impasse here.

You know the code a whole lot better than me.

Is there anything you can think of that will allow us to block the DOS
without breaking every medium to heavily loaded postfix and apache site
out there.

Somthing that doesn't require the administrators of every single
machine in one or the other class to tune their configurations?

Brong ( we expect you to know how to tune epoll, we don't expect every 
        apache and postfix administrator to know to tune a brand new 
        setting that just appeared in the last point release - especially 
        since most of them probably have no idea how many epoll watches
        their software creates as a single user, and have never needed 
        to think about it before)
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ