[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] encrypted monotone (and digression on
|
From: |
Timothy Brownawell |
|
Subject: |
Re: [Monotone-devel] encrypted monotone (and digression on |
|
Date: |
Mon, 10 Jul 2006 15:52:30 -0500 |
On Mon, 2006-07-10 at 13:29 -0700, Rob Schoening wrote:
> but my question is really: how vulnerable is "mtn serve" today to DoS
> and buffer overrun type exploits?
DoS: It'd be fairly simple to make monotone eat all your CPU (or on an
SMP box, as much CPU as a single-threaded program can eat). If you give
someone write access, they can also fill up your disk.
Buffer overrun: We tend to not use fixed-size buffers, so I don't think
this is terribly likely.
Tim
- [Monotone-devel] encrypted monotone (and digression on, Nathaniel Smith, 2006/07/09
- Re: [Monotone-devel] encrypted monotone (and digression on, Jeronimo Pellegrini, 2006/07/10
- Re: [Monotone-devel] encrypted monotone (and digression on, Nathaniel Smith, 2006/07/10
- [Monotone-devel] Re: encrypted monotone (and digression on, Graydon Hoare, 2006/07/10
- Re: [Monotone-devel] Re: encrypted monotone (and digression on, Daniel Carosone, 2006/07/11
- Re: [Monotone-devel] Re: encrypted monotone (and digression on, jcrisp, 2006/07/11
- Re: [Monotone-devel] Re: encrypted monotone (and digression on, Nathaniel Smith, 2006/07/11
- Re: [Monotone-devel] encrypted monotone (and digression on, Jeronimo Pellegrini, 2006/07/11
- Re: [Monotone-devel] encrypted monotone (and digression on, Matthew A. Nicholson, 2006/07/11