Re: Eliminating the "rehash" mechanism for 5.18

If the hash random seed isn't changed on forking, then conceivably a privileged
daemon could fork off child process which drop their privileges or run as a
different user account.  A core dump file from one of those children could be
used to extract the random seed and attack the parent.  But this probably isn't
worth worrying about, since if you have the core dump you probably have all sorts
of garbage data from the parent process, which is already an information leak at
the least.

-- 
Ed Avis <eda@waniasset.com>

• Eliminating the "rehash" mechanism for 5.18 by demerphq
• RE: Eliminating the "rehash" mechanism for 5.18 by bulk 88
• Re: Eliminating the "rehash" mechanism for 5.18 by David Golden
• Re: Eliminating the "rehash" mechanism for 5.18 by Peter Rabbitson
• Re: Eliminating the "rehash" mechanism for 5.18 by Eric Brine
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Ed Avis
• Re: Eliminating the "rehash" mechanism for 5.18 by Ævar Arnfjörð Bjarmason
• Re: Eliminating the "rehash" mechanism for 5.18 by Eric Brine
• Re: Eliminating the "rehash" mechanism for 5.18 by Leon Timmermans
• Re: Eliminating the "rehash" mechanism for 5.18 by Eric Brine
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Ed Avis
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Tony Cook
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Ruslan Zakirov
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Aristotle Pagaltzis
• Re: Eliminating the "rehash" mechanism for 5.18 by James E Keenan
• Re: Eliminating the "rehash" mechanism for 5.18 by Peter Rabbitson
• Re: Eliminating the "rehash" mechanism for 5.18 by Dave Mitchell
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Dave Mitchell
• Re: Eliminating the "rehash" mechanism for 5.18 by Peter Rabbitson
• Re: Eliminating the "rehash" mechanism for 5.18 by Jesse Luehrs
• Re: Eliminating the "rehash" mechanism for 5.18 by Ævar Arnfjörð Bjarmason
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• RE: Eliminating the "rehash" mechanism for 5.18 by bulk 88
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq
• Re: Eliminating the "rehash" mechanism for 5.18 by Peter Rabbitson
• RE: Eliminating the "rehash" mechanism for 5.18 by bulk 88
• Re: Eliminating the "rehash" mechanism for 5.18 by demerphq