On Fri, 2013-09-20 at 09:29 +0200, David Henningsson wrote: > On 09/20/2013 05:44 AM, Arun Raghavan wrote: > > We're hitting the 32 sink-input limit quite often with increasing use of > > PA by web browsers, so let's increase this limit. > > Does this increase the risk of us being the target of attacks; i e, if a > web browser deliberately starts 255 streams, would we risk getting > killed by using too much rtprio cpu time? Even with the limit being at 32 it's possible to do a DoS attack by creating streams with many channels and a high sample rate. As far as I can see, raising the limit doesn't create any new threats. -- Tanu
