Re: locking workaround patch

From: Michael Meeks <michael ximian com>
To: Havoc Pennington <hp redhat com>
Cc: gconf <gconf-list gnome org>, Mark McLoughlin <mark skynet ie>
Subject: Re: locking workaround patch
Date: 11 Sep 2002 09:52:32 +0100

Hi Havoc,

On Tue, 2002-09-10 at 17:15, Havoc Pennington wrote:
> Here is the latest patch for working around the locking issue.  Adds
> the dialog offering to delete locks, and adds a GCONF_LOCAL_LOCKS
> mode. GCONF_LOCAL_LOCKS mode leaves a denial-of-service attack
> possible. (User A creates the lockdir for user B so user B can't log
> in.)

	Use the ORBit2 code for getting around this then in
linc/include/linc/linc-protocol.h (linc_get_tmpdir).

	The ORBit2 code scans in a race-free way for a correctly attributed
user-owned directory, and this is also the directory that b-a-s uses.
It'd be nice to unify on this, so it's localised - oh and it solves the
DOS problem at a stroke ;-)

	NB. you need to call it after initializing the ORB really. Also, it has
problems if /tmp is not readable - there is a Mdk patch for their 'high
security level' mode that just defaults to the [DOSable] mode. [ sweet
irony ].

	How does that sound ?

	Regards,

		Michael.

-- 
 mmeeks gnu org  <><, Pseudo Engineer, itinerant idiot

Follow-Ups:
- Re: locking workaround patch
  - From: Havoc Pennington

References:
- locking workaround patch
  - From: Havoc Pennington

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]