Re: Fork Bombing Attack

From: Krzysztof Halasa
Date: Fri May 18 2007 - 17:21:59 EST

Next message: Jiri Slaby: "Re: [PATCH 1/1] Misc: phantom, move to unlocked_ioctl"
Previous message: Jiri Kosina: "Re: SideWinder GameVoice driver"
In reply to: Valdis . Kletnieks: "Re: Fork Bombing Attack"
Next in thread: Bernd Eckenfels: "Re: Fork Bombing Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"Anand Jahagirdar" <anandjigar@xxxxxxxxx> writes:

> ulimit are by default set to some value for all users.. root, guest.
> on my machine with FC4 distribution when i typed command "ulimit -u"
> it gave me output as 3055 and another machine having FC6 distribution
> output is 8050. when root or any other user changes ulimit by typing
> "ulimit -u value",.ulimit value is changed for that session and not
> permantely. actually ulimit should help to prevent fork bombing attack
> but it wont and fork bombing attack still take down the machine having
> latest linux distributions.

how about:
$ ulimit -u 100
$ for f in `seq 1 500`; do (sleep 100&); done

(on another terminal)
$ ps xa|grep 'sleep 100' |wc -l

mine prints 93.
--
Krzysztof Halasa
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jiri Slaby: "Re: [PATCH 1/1] Misc: phantom, move to unlocked_ioctl"
Previous message: Jiri Kosina: "Re: SideWinder GameVoice driver"
In reply to: Valdis . Kletnieks: "Re: Fork Bombing Attack"
Next in thread: Bernd Eckenfels: "Re: Fork Bombing Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]