REDROOM
PHP 8.5.2
Path:
Logout
Edit File
Size: 1.60 KB
Close
//usr/share/doc/dbus/README.Debian
Text
Base64
Adjusting limits to mitigate denial of service ============================================== 'dbus-daemon --system' has several arbitrary limits which are a trade-off between working correctly when not under attack, and preventing local denial of service attacks. System administrators with particularly hostile local users should review these limits and tune them if necessary. In particular, the fix for CVE-2014-3639 in dbus-1.8.8 makes it difficult for local users to prevent connections completely, but they can still introduce a delay which increases with larger authentication timeout (auth_timeout) values, by opening many parallel connections from different processes and never completing the authentication handshake. As a result, dbus 1.8.8 also reduced the auth_timeout from 30 seconds to 5 seconds to mitigate this delay. However, this change resulted in boot failures on some systems because systemd could not authenticate sufficiently quickly while the system was busy, and was reverted in 1.8.12. On fast systems with hostile local users, administrators can reduce this delay by returning to the 5 second timeout (or any other value in milliseconds), by saving this as /etc/dbus-1/system-local.conf or a file matching /etc/dbus-1/system.d/*.conf: <busconfig> <limit name="auth_timeout">5000</limit> </busconfig> If applying this change, please reboot several times and check the syslog or Journal for messages containing "Connection has not authenticated soon enough, closing it". Seeing that message while not subject to a denial-of-service attack indicates that the auth_timeout has been set too short.
Save
Close
Exit & Reset
Text mode: syntax highlighting auto-detects file type.
Directory Contents
Dirs: 0 × Files: 6
Delete Selected
Select All
Select None
Sort:
Name
Size
Modified
Enable drag-to-move
Name
Size
Perms
Modified
Actions
AUTHORS.gz
4.57 KB
lrw-r--r--
2023-09-01 14:28:31
Edit
Download
Rename
Chmod
Change Date
Delete
OK
Cancel
recursive
OK
Cancel
recursive
OK
Cancel
changelog.Debian.gz
8.10 KB
lrw-r--r--
2024-08-09 02:33:22
Edit
Download
Rename
Chmod
Change Date
Delete
OK
Cancel
recursive
OK
Cancel
recursive
OK
Cancel
copyright
20.61 KB
lrw-r--r--
2023-12-05 15:36:45
Edit
Download
Rename
Chmod
Change Date
Delete
OK
Cancel
recursive
OK
Cancel
recursive
OK
Cancel
NEWS.gz
52.63 KB
lrw-r--r--
2023-09-01 14:30:45
Edit
Download
Rename
Chmod
Change Date
Delete
OK
Cancel
recursive
OK
Cancel
recursive
OK
Cancel
README.Debian
1.60 KB
lrw-r--r--
2023-12-05 15:36:45
Edit
Download
Rename
Chmod
Change Date
Delete
OK
Cancel
recursive
OK
Cancel
recursive
OK
Cancel
README.gz
2.88 KB
lrw-r--r--
2022-10-02 14:06:53
Edit
Download
Rename
Chmod
Change Date
Delete
OK
Cancel
recursive
OK
Cancel
recursive
OK
Cancel
Zip Selected
If ZipArchive is unavailable, a
.tar
will be created (no compression).