LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Shared memory = shared secrets

Shared memory = shared secrets

Posted Jul 9, 2009 1:14 UTC (Thu) by PaulWay (✭ supporter ✭, #45600)
In reply to: Transcendent memory by nix
Parent article: Transcendent memory

If we're talking about a shared system, then at some point that UUID has to be shared amongst hosts. I think the fear is that a hacked client will be able to see the UUIDs used by other clients, and therefore be able to use those UUIDs directly rather than having to guess them.

Have fun,

Paul

(Log in to post comments)

Shared memory = shared secrets

Posted Jul 9, 2009 12:20 UTC (Thu) by nix (subscriber, #2304) [Link]

Ow. Yeah, that's plausible, but unfortunately it would apply to all other shared-secret mechanisms too :/ basically if people can steal your key, you've lost. (But if they can steal your key they can presumably steal anything else they care to, as well.)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds