Hi, There is a problem with /run/user/ and /dev/shm. Ordinary users can write to /run/user/<login> dirs filling entire free space. This can lead to local DoS. Additional information can be found in this thread http://lists.freedesktop.org/archives/systemd-devel/2011-April/thread.html#1839 Best regards, Michal
There's no way quota support for tmpfs can be ready in time for F15.
I realize that it is not a 10 lines bugfix :) Thanks for the consideration of the problem.
I guess you're not expecting this to be fixed for F15, then? Moving to rawhide so the problem can be considered properly.
-- Fedora Bugzappers volunteer triage team https://fedoraproject.org/wiki/BugZappers
*** Bug 857297 has been marked as a duplicate of this bug. ***
*** Bug 902522 has been marked as a duplicate of this bug. ***
So f15 is history, any news about this bug/rfe?
No change in tmpfs. What has changed is that Fedora now creates a tmpfs for each /run/user/<uid> login with a maximum size. This mitigation sort of covers up the problem. the /dev/shm issue appears to still be present.
Closing this as Rawhide, as tmpfs quotas support has been released in Linux 6.10, if Fedora maintainers believe the Closed resolution should be something else, please, feel free to change.
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days