Re: [RFC PATCH 6/6] security/fbfam: Mitigate a fork brute force attack

From: John Wood
Date: Sat Sep 19 2020 - 04:03:23 EST

Next message: Janusz Krzysztofik: "[PATCH] mtd: rawnand: ams-delta: Fix non-OF build warning"
Previous message: Alexey Budankov: "Re: [PATCH 3/3] platform/x86: Intel PMT Crashlog capability driver"
In reply to: Kees Cook: "Re: [RFC PATCH 6/6] security/fbfam: Mitigate a fork brute force attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 18, 2020 at 02:35:12PM -0700, Kees Cook wrote:
> On Fri, Sep 18, 2020 at 06:02:16PM +0200, John Wood wrote:
> > On Thu, Sep 10, 2020 at 04:56:19PM -0700, Kees Cook wrote:
> > > On Thu, Sep 10, 2020 at 01:21:07PM -0700, Kees Cook wrote:
> > > > + pr_warn("fbfam: Offending process with PID %d killed\n",
> > > > + p->pid);
> > >
> > > I'd make this ratelimited (along with Jann's suggestions).
> >
> > Sorry, but I don't understand what you mean with "make this ratelimited".
> > A clarification would be greatly appreciated.
>
> Ah! Yes, sorry for not being more clear. There are ratelimit helpers for
> the pr_*() family of functions, e.g.:
>
> pr_warn_ratelimited("brute: Offending process with PID...

Thanks for the clarification.

> --
> Kees Cook

Regards,
John Wood

Next message: Janusz Krzysztofik: "[PATCH] mtd: rawnand: ams-delta: Fix non-OF build warning"
Previous message: Alexey Budankov: "Re: [PATCH 3/3] platform/x86: Intel PMT Crashlog capability driver"
In reply to: Kees Cook: "Re: [RFC PATCH 6/6] security/fbfam: Mitigate a fork brute force attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]