On Wed, 14 Aug 2019, Lennart Poettering wrote: > Well, a D-Bus connection can remain open indefinitely, and may even > have incomplete "half" messages queued in them as long as the client > desires. After the initial authentication is done, clients may thus > take up resources as long as they want, this is by design of dbus > really, and is different from HTTP for example, where connections > usually have a time-out applied. dbus doesn't know timeouts for > established connections. It knows them for the authentication phase, > and it knows them for method calls that are flight, but it does not > know them for the mere existance of an established connection. I'm sure it's not in the design of DBus that clients can continue to consume those resources after they've disconnected. > PID 1 authenticates clients of the private connection simply by making > the socket for it inaccessible to anyone who is not privileged. Due to > that it gets away with not doing any further per-user accounting, > because it knows the clients are all privileged anyway. > > So, yes, it would be good if we could protect us from any form of > misuse, but basically, if you have a root client that misbehaves you > have too accept that... I understand all that. Nevertheless, Brian identified a bug: after receiving certain data on its private socket, the systemd process can leak a file descriptor. All we need to establish is whether that bug still exists in the current version of systemd. _Even if_ it isn't a security issue, having one fewer bugs is a good thing. _______________________________________________ systemd-devel mailing list systemd-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.freedesktop.org/mailman/listinfo/systemd-devel
Re: systemd's connections to /run/systemd/private ?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: systemd's connections to /run/systemd/private ?
- From: Michael Chapman <mike@xxxxxxxxxxxxxxxxx>
- Date: Wed, 14 Aug 2019 22:36:06 +1000 (AEST)
- Cc: systemd-devel@xxxxxxxxxxxxxxxxxxxxx
- In-reply-to: <20190814120358.GA10706@gardel-login>
- References: <20190801145105.GB17099@in.waw.pl> <20190801151458.GG56323@numachi.com> <20190801152834.GC17099@in.waw.pl> <20190801164854.GH56323@numachi.com> <20190801191820.GD17099@in.waw.pl> <20190813215056.GS56323@numachi.com> <alpine.LFD.2.21.1908141812120.3528@beren.home> <alpine.LFD.2.21.1908141843200.3528@beren.home> <20190814093421.GC10516@gardel-login> <alpine.LFD.2.21.1908141941560.3528@beren.home> <20190814120358.GA10706@gardel-login>
- User-agent: Alpine 2.21 (LFD 202 2017-01-01)
- Follow-Ups:
- Re: systemd's connections to /run/systemd/private ?
- From: Lennart Poettering
- Re: systemd's connections to /run/systemd/private ?
- References:
- Re: systemd's connections to /run/systemd/private ?
- From: Brian Reichert
- Re: systemd's connections to /run/systemd/private ?
- From: Michael Chapman
- Re: systemd's connections to /run/systemd/private ?
- From: Michael Chapman
- Re: systemd's connections to /run/systemd/private ?
- From: Lennart Poettering
- Re: systemd's connections to /run/systemd/private ?
- From: Michael Chapman
- Re: systemd's connections to /run/systemd/private ?
- From: Lennart Poettering
- Re: systemd's connections to /run/systemd/private ?
- Prev by Date: Re: systemd's connections to /run/systemd/private ?
- Next by Date: Antw: Re: Antw: Re: systemd's connections to /run/systemd/private ?
- Previous by thread: Re: systemd's connections to /run/systemd/private ?
- Next by thread: Re: systemd's connections to /run/systemd/private ?
- Index(es):
 |