[EROS-Arch] Questioning need for Call Count
Jonathan S. Shapiro
Fri, 10 Nov 2000 10:31:00 -0500
> But generating/checking serial numbers in user space would be the first
> concept in EROS which relied on some kind of "password capability".
> A malicious domain could start a brute force attack.
I believe you may be confusing a security feature for a bug catching
feature. I believe that the consumption of the resume capability on use is
not a security feature. Certainly there is nothing in our access model to
suggest that it is needed from a security point of view.
So the issue here is not denial of service or malice. The issue here is
catching bugs in servers that return multiple times.
Or at least, this is what I believe the issue is, and the conversation
should confirm or disprove that.