Re: [PATCH] proc connector: reject unprivileged listener bumps

From: Matt Helsley Date: Tue, 26 Feb 2013 09:24:41 -0800 > On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook wrote: >> While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible >> for an unprivileged user to turn off notifications for all listeners by >> sending

Re: [PATCH] proc connector: reject unprivileged listener bumps

From: Matt Helsley matth...@linux.vnet.ibm.com Date: Tue, 26 Feb 2013 09:24:41 -0800 On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook wrote: While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible for an unprivileged user to turn off notifications for all listeners by

Re: [PATCH] proc connector: reject unprivileged listener bumps

On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook wrote: > While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible > for an unprivileged user to turn off notifications for all listeners by > sending PROC_CN_MCAST_IGNORE. Instead, require the same privileges as > required for a

Re: [PATCH] proc connector: reject unprivileged listener bumps

Hi On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook (keesc...@chromium.org) wrote: > While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible > for an unprivileged user to turn off notifications for all listeners by > sending PROC_CN_MCAST_IGNORE. Instead, require the same

Re: [PATCH] proc connector: reject unprivileged listener bumps

Hi On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook (keesc...@chromium.org) wrote: While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible for an unprivileged user to turn off notifications for all listeners by sending PROC_CN_MCAST_IGNORE. Instead, require the same

Re: [PATCH] proc connector: reject unprivileged listener bumps

On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook wrote: While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible for an unprivileged user to turn off notifications for all listeners by sending PROC_CN_MCAST_IGNORE. Instead, require the same privileges as required for a

[PATCH] proc connector: reject unprivileged listener bumps

While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible for an unprivileged user to turn off notifications for all listeners by sending PROC_CN_MCAST_IGNORE. Instead, require the same privileges as required for a multicast bind. Signed-off-by: Kees Cook Cc: Evgeniy Polyakov Cc:

[PATCH] proc connector: reject unprivileged listener bumps

While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible for an unprivileged user to turn off notifications for all listeners by sending PROC_CN_MCAST_IGNORE. Instead, require the same privileges as required for a multicast bind. Signed-off-by: Kees Cook keesc...@chromium.org Cc: