[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Issue 9.2) <steal-lock>

To: netconf@ops.ietf.org
Subject: Issue 9.2) <steal-lock>
From: Andy Bierman <abierman@cisco.com>
Date: Tue, 02 Dec 2003 16:09:40 -0800

Is there a need for the <steal-lock> operation?

Attacker can open a session and quickly grab a lock; 
kill-session followed by lock may not be fast enough 
to stop the attack, so steal-lock is needed.
Need to steal the lock and kill the session in one 
operation or the session will not know the lock was stolen.


--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

Follow-Ups:
- Re: Issue 9.2) <steal-lock>
  - From: William Caban <william@hpcf.upr.edu>

Prev by Date: Issue 9.1) DoS attack using global <lock>
Next by Date: Issue 9.3) Authorization Control Model
Previous by thread: Issue 9.1) DoS attack using global <lock>
Next by thread: Re: Issue 9.2) <steal-lock>
Index(es):
- Date
- Thread