> It stands to argue that the same can be done for vm_area_structs's, so
> why don't we punt those from the mm subsystem?
1. Its a local not a remote attack
2. The folks trying to make Linux totally bulletproof to local attack
are accounting vm_area_structs
What if attacked server is running a web server and is known to be
mmap'ing static content... think about this very carefully, it is
identical to your initial interpretation of my argument with the added
element of being a remote attack. Many people do this and don't
consider is remotely exploitable in any way, right?
In fact this was the very case I was thinking about. :-)
Later,
David S. Miller
davem@redhat.com
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/