[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [MiNT] XaAES / GEM memory issues



> > Sorry, do you accept the fact that MiNT allows creation of multiuser
> > setups? What your limit enabled in mint.cnf helps, when the someone else
> > than root himself, connects to the machine and starts your two processes
> > which lock the usage of the F_OS_SPECIAL, before the root sitting at the
> > console has started the AES?
> > 
> > Can you guarantee that this won't happen?
> > 
> Ofcourse not. But I can guarantee that this is a lot safer than not having
> any checks at all. Especially since F_OS_SPECIAL can't be removed for a long
> time yet.

For now the only change is that the F_OS_SPECIAL will be strictly root
only.
 
> You could also write a tiny program that occupies all F_OS_SPECIAL
> privileges, and then kill this immediately before you start the AES.
> Ofcourse, anyone could then just crash the AES and then exploit
> F_OS_SPECIAL, but then *you* could use a daemon that constantly monitors the
> status of the AES and immediately spawns your little F_OS_SPECIAL-hogging
> program if it crash etc...

Sorry, too complex.

--
Konrad M.Kokoszkiewicz
mail: draco@atari.org
http://draco.atari.org

** Ea natura multitudinis est,
** aut servit humiliter, aut superbe dominatur (Liv. XXIV,25)
*************************************************************
** Taka to juz natura pospolstwa, ze albo sluzy ono unizenie,
** albo bezczelnie sie panoszy.