A DoS attack is possible if global lock allows users to lock more of the config dB than they have write access. Choose one of:
- Only users with all-access can lock the dB
- Only grant lock for areas that write-access is allowed
- Support partial locks
- Simply document the problem in the security section
-- to unsubscribe send a message to netconf-request@ops.ietf.org with the word 'unsubscribe' in a single line as the message text body. archive: <http://ops.ietf.org/lists/netconf/>
-- to unsubscribe send a message to netconf-request@ops.ietf.org with the word 'unsubscribe' in a single line as the message text body. archive: <http://ops.ietf.org/lists/netconf/>