OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: David G. Andersen (danderse_at_cs.utah.edu)
Date: Fri Nov 22 2002 - 06:40:05 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Sheldon Hearn just mooed:
    > On (2002/11/21 15:29), Mike Silbersack wrote:
    >
    > > HOWEVER, we're in a code freeze leading up to 5.0-release, and local DoSes
    > > aren't a critical bug.
    >
    > Is that the official FreeBSD SO team viewpoint on local DoS
    > vulnerabilities?

      Well, keep in mind that this isn't really a bad one - it doesn't
    crash the machine, and it's moderately easy to identify the (l)user who's
    doing it. I've actually not seen this happen maliciously, I've only
    seen it happen by accident with buggy research code, some of it mine.
    It's annoying when it happens, but there are a million things a local
    user can do to be annoying.

      -Dave 

    -- 
work: dgalcs.mit.edu                          me:  dgapobox.com
      MIT Laboratory for Computer Science           http://www.angio.net/
      I do not accept unsolicited commercial email.  Do not spam me.

    To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message