On 2 October 2012 08:38, Erik Cederstrand <erik@cederstrand.dk> wrote: > Den 01/10/2012 kl. 13.55 skrev Eitan Adler <lists@eitanadler.com>: > >> On 1 October 2012 07:08, Konstantin Belousov <kostikbel@gmail.com> wrote: >>> I do not believe in the dreadful 'flood ping' security breach. Is a >>> local escalation possible with non-dropped root ? >> >> It is clearly a local escalation: a non-root user can do something >> which was intended only for root. It is a different question how >> serious the breach is. > > Are there any objections to the path I attached in my first post? To the approach in general? If not, I'll send a PR so it doesn't get lost. Not by me. Please cc me on the PR as I'll commit if no one else objects. -- Eitan Adler _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"