[PATCH v5 7/8] Documentation: Add documentation for the Brute LSM

John Wood john.wood at gmx.com
Fri Mar 12 17:54:44 UTC 2021

On Thu, Mar 11, 2021 at 12:05:17PM -0800, Andi Kleen wrote:
> Okay but that means that the brute force attack can just continue
> because the attacked daemon will be respawned?
> You need some way to stop the respawning, otherwise the
> mitigation doesn't work for daemons.
I will work on your solution regarding respawned daemons (use wait*() to inform
userspace that the offending processes killed by the mitigation exited due to
this mitigation -> then the supervisor can adopt their own policy).

> -Andi

Thank you very much,
John Wood

More information about the Linux-security-module-archive mailing list