Re: Fork Bombing Attack

From: Bernd Eckenfels
Date: Fri May 18 2007 - 18:40:36 EST

Next message: H. Peter Anvin: "Re: [PATCH 2.6.21.1] i386: save registers before intra-privilegesyscall"
Previous message: Mariusz Kozlowski: "[PATCH] arm: at91_adc parenthesis balance"
In reply to: Krzysztof Halasa: "Re: Fork Bombing Attack"
Next in thread: Mark Lord: "Re: Fork Bombing Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In article <25ae38200705181022l35e0b364p98fc39e5739612b@xxxxxxxxxxxxxx> you wrote:
> I found one more interesting thing related with fork
> bombing attack. i have set following in /etc/security/limits.conf file
>
> #@root hard nproc 3000
> #@anand hard nproc 500

The # is a comment character. So those lines are not used.

BTW: the @ means group, you really want that? BTW2: you need to log out/in
and the session leader must actually be PAM regulated (i.e. not for daemons)

So it is good to check "ulimit -n" in the shell where you want to try the
forbomb. If it is below 100 you should be safe.

Gruss
Bernd
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: H. Peter Anvin: "Re: [PATCH 2.6.21.1] i386: save registers before intra-privilegesyscall"
Previous message: Mariusz Kozlowski: "[PATCH] arm: at91_adc parenthesis balance"
In reply to: Krzysztof Halasa: "Re: Fork Bombing Attack"
Next in thread: Mark Lord: "Re: Fork Bombing Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]