Date: Wed, 26 Oct 2016 11:42:14 +0200 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: CeDeROM <cederom@tlen.pl> Cc: "Robert N. M. Watson" <rwatson@freebsd.org>, freebsd-security@freebsd.org, Pawel Jakub Dawidek <pjd@freebsd.org> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-16:15.sysarch [REVISED] Message-ID: <868ttbwio9.fsf@desk.des.no> In-Reply-To: <CAFYkXjn39kKzcTY-pJObaVz8OGqbzCHE69kYAmRYtz5OX2kpAQ@mail.gmail.com> (cederom@tlen.pl's message of "Wed, 26 Oct 2016 11:22:44 %2B0200") References: <20161025173641.BCDFD1911@freefall.freebsd.org> <20161026042748.GG60006@garage.freebsd.pl> <CAGMYy3v8KxuQfou0SmUNikghH-9NWfneoMPP_15F85WkDaUhKg@mail.gmail.com> <20161026061504.GH60006@garage.freebsd.pl> <0717BEFA-4E65-4990-AC50-FD80681C110C@FreeBSD.org> <CAFYkXjn39kKzcTY-pJObaVz8OGqbzCHE69kYAmRYtz5OX2kpAQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
CeDeROM <cederom@tlen.pl> writes: > Robert N. M. Watson <rwatson@freebsd.org> writes: > > In general, my strong recommendation is against issuing advisories > > for local denial-of-service attacks, (..) > I would prefer to get that information regardless of individual > preferences. It's not a matter of individual preference. During my time as so@ (and Simon's before me), this was an explicit policy. The reason is that, as Robert points out, there are a million ways for a trusted unprivileged user to cause a DoS, and most of them aren't even bugs. Some of them can be mitigated using quotas or resource limits, but far from all. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?868ttbwio9.fsf>