Re: [PATCH v5 7/8] Documentation: Add documentation for the Brute LSM

From: Andi Kleen
Date: Sun Mar 07 2021 - 10:20:33 EST

Next message: Baolin Wang: "Re: [PATCH v2 1/3] mailbox: sprd: Introduce refcnt when clients requests/free channels"
Previous message: Hans de Goede: "[PATCH v4 resend 13/13] ASoC: Intel: bytcr_wm5102: Add jack detect support"
In reply to: John Wood: "Re: [PATCH v5 7/8] Documentation: Add documentation for the Brute LSM"
Next in thread: John Wood: "Re: [PATCH v5 7/8] Documentation: Add documentation for the Brute LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Sorry for the late answer. I somehow missed your email earlier.

> As a mitigation method, all the offending tasks involved in the attack are
> killed. Or in other words, all the tasks that share the same statistics
> (statistics showing a fast crash rate) are killed.

So systemd will just restart the network daemon and then the attack works
again?

Or if it's a interactive login you log in again.

I think it might be useful even with these limitations, but it would
be good to spell out the limitations of the method more clearly.

I suspect to be useful it'll likely need some user space configuration
changes too.

-Andi

Next message: Baolin Wang: "Re: [PATCH v2 1/3] mailbox: sprd: Introduce refcnt when clients requests/free channels"
Previous message: Hans de Goede: "[PATCH v4 resend 13/13] ASoC: Intel: bytcr_wm5102: Add jack detect support"
In reply to: John Wood: "Re: [PATCH v5 7/8] Documentation: Add documentation for the Brute LSM"
Next in thread: John Wood: "Re: [PATCH v5 7/8] Documentation: Add documentation for the Brute LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]