[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Issue 9.1) DoS attack using global <lock>
A DoS attack is possible if global lock allows users to
lock more of the config dB than they have write access.
Choose one of:
- Only users with all-access can lock the dB
- Only grant lock for areas that write-access is allowed
- Support partial locks
- Simply document the problem in the security section
--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>