Re: /proc/<n>/maps getting _VERY_ long

Michael H. Warfield (mhw@wittsend.com)
Sun, 5 Aug 2001 20:41:43 -0400


On Sun, Aug 05, 2001 at 04:41:43PM -0700, Linus Torvalds wrote:

[...]

I haven't been following this thread previously so I may be
way off base on this, but this caught my attention...

> So we certainly used to do more aggressive merging.

> We could merge more, but I'm not interested in working around broken
> applications. Right now we sanely merge the cases of consecutive
> anonymous mmaps, but we do _not_ merge cases where the app plays silly
> games, for example.

Hmmm... Apps that play silly games (intentionally) and
(deliberately) broken apps begin to fall into my territory. Does
it become possible for a user application to create a system wide
denial of service by playing silly games or does this only affect
the application itself? Yes, I know there are always ways of creating
denial of service attacks ala fork bombs and such, and I'm coming in on
this thread late, I'm just wondering about the scope of impact of "a
broken application" and does it give some leverage that can be
exploited by some misbehaving individual on a system?

> I'd like to know more than just the app that shows problems - I'd like
> to know what it is doing.

Bruce Schneier put it best... Fighting with broken applications
and classical "QA" and testing is programming for Murphy's computer.
Stuff goes bump in the night and broken apps cause bad things to happen.
In the security realm, we are programming for Satan's computer and have
to consider "apps that show problems" in the face of malicious intent.
What if what it is doing is trying to bring the system to its knees?

If it only causes problems for the broken app, that's fine. If it
causes problems for the rest of the system, that could be bad.

> Linus

Mike

-- 
 Michael H. Warfield    |  (770) 985-6132   |  mhw@WittsEnd.com
  (The Mad Wizard)      |  (678) 463-0932   |  http://www.wittsend.com/mhw/
  NIC whois:  MHW9      |  An optimist believes we live in the best of all
 PGP Key: 0xDF1DD471    |  possible worlds.  A pessimist is sure of it!

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/