On Wed, 23 Jul 2003 20:39:01 +1000
Herbert Xu <herbert@gondor.apana.org.au> wrote:
> On Wed, Jul 23, 2003 at 03:35:05AM -0700, David S. Miller wrote:
> > On Wed, 23 Jul 2003 19:56:47 +1000
> > Herbert Xu <herbert@gondor.apana.org.au> wrote:
> > If I know your password is 7 characters I have a smaller
> > space of passwords to search to just brute-force it.
>
> Yes but can't you do the same thing with /proc/interrupts or
> /proc/net/dev? Why are we singling out the serial driver?
With the serial procfs thing, we know exactly that it is
characters.
With interrupts and network device statistics, we cannot make
such assumptions making attacks using these facilities much
less likely to be feasible.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Wed Jul 23 2003 - 22:00:48 EST