linux-sg2042/security
Stephen Hemminger 227b60f510 [INET]: local port range robustness
Expansion of original idea from Denis V. Lunev <den@openvz.org>

Add robustness and locking to the local_port_range sysctl.
1. Enforce that low < high when setting.
2. Use seqlock to ensure atomic update.

The locking might seem like overkill, but there are
cases where sysadmin might want to change value in the
middle of a DoS attack.

Signed-off-by: Stephen Hemminger <shemminger@linux-foundation.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
2007-10-10 17:30:46 -07:00
..
keys mm: Remove slab destructors from kmem_cache_create(). 2007-07-20 10:11:58 +09:00
selinux [INET]: local port range robustness 2007-10-10 17:30:46 -07:00
Kconfig [PATCH] LSM: remove BSD secure level security module 2006-09-29 09:18:10 -07:00
Makefile [PATCH] LSM: remove BSD secure level security module 2006-09-29 09:18:10 -07:00
capability.c header cleaning: don't include smp_lock.h when not used 2007-05-08 11:15:07 -07:00
commoncap.c fix NULL pointer dereference in __vm_enough_memory() 2007-08-22 19:52:45 -07:00
dummy.c fix NULL pointer dereference in __vm_enough_memory() 2007-08-22 19:52:45 -07:00
inode.c remove "struct subsystem" as it is no longer needed 2007-05-02 18:57:59 -07:00
root_plug.c Remove obsolete #include <linux/config.h> 2006-06-30 19:25:36 +02:00
security.c security: unexport mmap_min_addr 2007-07-11 22:52:33 -04:00