|
|
Пишет LWN.net (![[info]](http://lj.rossia.org/img/syndicated.gif){kind=small} syn_lwnheadline)@ 2021-03-17 22:30:00 |
 |
|
 |
|
|
|
|
|
|
 |
|
 |
[$] Handling brute force attacks in the kernel
A number of different attacks against Linux systems rely on brute-force
techniques using the fork()
system call, so
a new Linux security module (LSM), called "Brute", has been created to
detect and thwart such attacks.
Repeated fork() calls can be used for various types of
attacks, such as exploiting the Stack
Clash vulnerability or Heartbleed-style flaws.
Version 6 of the Brute patch set was recently
posted
and looks like it might be heading toward the mainline.
A number of different attacks against Linux systems rely on brute-force
techniques using the fork()
system call, so
a new Linux security module (LSM), called "Brute", has been created to
detect and thwart such attacks.
Repeated fork() calls can be used for various types of
attacks, such as exploiting the Stack
Clash vulnerability or Heartbleed-style flaws.
Version 6 of the Brute patch set was recently
posted
and looks like it might be heading toward the mainline.
