On Sun, Jan 26, 2014 at 08:11:43PM -0500, Tom Horsley wrote:
So, does this mean people will soon (if not already)
be writing malicious web pages that use d-bus
and systemd to take over your system if you happen
to visit the page?
No. There's no mechanism for them to do this.
Or forget web pages. Will random users be able
to disrupt systems that use systemd by spewing
bazillions of d-bus messages in a denial of
service?
No. Dbus contains limiting mechanisms precisely to prevent that.
I'm just curious here, but I betcha there are
folks who are more than curious out there...
This might help:
http://dbus.freedesktop.org/doc/dbus-specification.html#auth-protocol
--
Matthew Miller -- Fedora Project -- <mattdm(a)fedoraproject.org>