https://labs.parabola.nu/https://labs.parabola.nu/favicon.ico?15367742552017-01-21T00:13:59ZParabola Issue Trackerparabola-hackers - Bug #1068: [parabola-hackers-nshd] Local DoS attack by using long strings.https://labs.parabola.nu/issues/1068?journal_id=75112017-01-21T00:13:59Zlukeshulukeshu@parabola.nu
<ul><li><strong>Project</strong> changed from <i>libretools</i> to <i>parabola-hackers</i></li></ul> parabola-hackers - Bug #1068: [parabola-hackers-nshd] Local DoS attack by using long strings.https://labs.parabola.nu/issues/1068?journal_id=78012017-04-19T23:46:58Zlukeshulukeshu@parabola.nu
<ul><li><strong>Description</strong> updated (<a title="View differences" href="/journals/7801/diff?detail_id=2772">diff</a>)</li></ul><p>I really don't want to personally write the code, but: I no longer believe that nshd should be a daemon. I believe that it should be implemented as an nss module and as a pam module.</p>
<p>As much as I love Go, I don't believe that we should have to load the Go runtime into essentially every process; so writing the modules in Go is out. Maybe rust, but probably C.</p>
<p>OTOH, perhaps a standard SQL nss/pam module would be the way to go, and have it load the data into SQL.</p>
<p>I'm liking the idea of using SQL as an ACID cache for things for which the authoritative source is in git.</p> parabola-hackers - Bug #1068: [parabola-hackers-nshd] Local DoS attack by using long strings.https://labs.parabola.nu/issues/1068?journal_id=82422017-09-09T19:07:46Zlukeshulukeshu@parabola.nu
<ul><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li><li><strong>Assignee</strong> set to <i>lukeshu</i></li><li><strong>Status</strong> changed from <i>open</i> to <i>fixed</i></li></ul><p>fixed in v20170908</p>