From owner-freebsd-hackers Thu Oct 17 23:59:48 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id XAA01106 for hackers-outgoing; Thu, 17 Oct 1996 23:59:48 -0700 (PDT) Received: from lestat.nas.nasa.gov (lestat.nas.nasa.gov [129.99.50.29]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id XAA01101 for ; Thu, 17 Oct 1996 23:59:46 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by lestat.nas.nasa.gov (8.7.5/8.6.12) with SMTP id XAA13336; Thu, 17 Oct 1996 23:46:38 -0700 (PDT) Message-Id: <199610180646.XAA13336@lestat.nas.nasa.gov> X-Authentication-Warning: lestat.nas.nasa.gov: Host localhost [127.0.0.1] didn't use HELO protocol To: "Justin T. Gibbs" Cc: Karl Denninger , jdp@polstra.com, ache@nagual.ru, guido@gvr.win.tue.nl, phk@critter.tfs.com, freebsd-hackers@freebsd.org, tech-userlevel@netbsd.org Subject: Re: cvs commit: src/lib/libc/db/hash hash_buf.c Reply-To: Jason Thorpe From: Jason Thorpe Date: Thu, 17 Oct 1996 23:46:37 -0700 Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Thu, 17 Oct 1996 23:10:46 -0700 "Justin T. Gibbs" wrote: > >What's the objection to clearing possibly-contaminated structures when a > >program signifies its done with a privileged resource? > > It causes any db client to pay this penalty regardless of what is stored > in the database. That is bad design. Right, and as I said previously, who's to know if there's other sensitive data in the processes' address space... In addition to paying a performance cost, you don't really solve anything. Jason R. Thorpe thorpej@nas.nasa.gov NASA Ames Research Center Home: 408.866.1912 NAS: M/S 258-6 Work: 415.604.0935 Moffett Field, CA 94035 Pager: 415.428.6939