FreeBSD Security Advisory FreeBSD-SA-16:15.sysarch [REVISED]
Dag-Erling Smørgrav
des at des.no
Wed Oct 26 09:42:22 UTC 2016
CeDeROM <cederom at tlen.pl> writes:
> Robert N. M. Watson <rwatson at freebsd.org> writes:
> > In general, my strong recommendation is against issuing advisories
> > for local denial-of-service attacks, (..)
> I would prefer to get that information regardless of individual
> preferences.
It's not a matter of individual preference. During my time as so@ (and
Simon's before me), this was an explicit policy. The reason is that, as
Robert points out, there are a million ways for a trusted unprivileged
user to cause a DoS, and most of them aren't even bugs. Some of them
can be mitigated using quotas or resource limits, but far from all.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list