On Tue, 10.05.11 00:57, MichaÅ Piotrowski (mkkp4x4@xxxxxxxxx) wrote: > > 2011/5/10 Lennart Poettering <mzerqung@xxxxxxxxxxx>: > > On Mon, 09.05.11 23:54, MichaÅ Piotrowski (mkkp4x4@xxxxxxxxx) wrote: > >> No, only for /run/user/ - because there is a simple workaround that > >> can be used on affected systems if the administrator considers his > >> system as vulnerable for malicious users. > > > > Again, we had /dev/shm for years on Linux. This weakness in the security > > model is not news, not at all. > > Yes, but /run/user is a new thing and it gives wonderful opportunity > to DoS services for all system users. Thats my POV. And my POV is that > it should be documented - users should be aware about this. Also FPL > agreed with my arguments. > > That's all. If you do not agree with that, then I'm giving up :) All I am saying is that you can easily do this with /dev/shm too. And not only with F15, but with every prior release too, since /dev/shm was invented. Lennart -- Lennart Poettering - Red Hat, Inc. -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
