| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <m3tyslyej6.fsf@ursa.amorsen.dk> Date: Fri, 12 Mar 2010 12:18:05 +0100 From: Benny Amorsen <benny+usenet@...rsen.dk> To: David Miller <davem@...emloft.net> Cc: philipp_subx@...fish-solutions.com, torsten.schmidt@...06.tu-chemnitz.de, netdev@...r.kernel.org Subject: Re: [PATCH] ipv4: add DiffServ priority based routing David Miller <davem@...emloft.net> writes: > Look, this doesn't work. QoS handling and policy belongs in the > egress point to the network, it's the only way to control this > properly and prevent abuse. First, QoS is important even within the network. Modern switches come pre-configured with sane defaults which ensure that e.g. EF marked packets get priority over non-EF-marked packets. Cisco, HP, and Linksys-Cisco at least provide a decent out-of-the-box configuration. This can obviously be abused, but the solution there is the same as in network abuses: Either apply the LART or change the configuration of the switches to be less trusting. We haven't, so far, had a customer where the LART was necessary, much less had to reconfigure a switch. So why not let Linux provide the same out-of-the-box experience as the switches do? If the trust is abused Linux provides lots of tools to make it less trusting or even to punish the abusers. /Benny -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists