| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 05 Jul 2010 20:13:24 -0700 (PDT) From: David Miller <davem@...emloft.net> To: philipp_subx@...fish-solutions.com Cc: hagen@...u.net, alex@...riz.org.uk, netdev@...r.kernel.org Subject: Re: setsockopt(IP_TOS) being privileged or distinct capability? From: Philip Prindeville <philipp_subx@...fish-solutions.com> Date: Mon, 05 Jul 2010 21:08:05 -0600 > Yes, most users have admin/privileged rights on their machines, but > don't know enough to exploit that. Even "stupid" users are a very slim, marginal, step away from making use of it once they get shown with a HOWTO on some web site what is possible with this if QoS is being abided by on their network. Look, this discussion seems completely pointless. The behavior is never changing, setting the TOS will always be non-privileged. We cannot change the current behavior no matter what political or other motivation we might have for doing so. It's been non-privileged for more than 15 years, and we'd knowingly break applications with the change. And I don't even agree with the arguments being proposed for doing this. Users can control their packets however they wish. The only thing the ISP can do to prevent toying with the TOS bits is putting logic into your little black box that hooks up to your cable/dsl line. So this TOS being privileged proposal it's a "no go" from any angle as far as I'm concerned. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists