From owner-freebsd-hackers  Thu Feb  2 14:40:57 1995
Return-Path: hackers-owner
Received: (from root@localhost) by freefall.cdrom.com (8.6.9/8.6.6) id OAA19329 for hackers-outgoing; Thu, 2 Feb 1995 14:40:57 -0800
Received: from ibp.ibp.fr (ibp.ibp.fr [132.227.60.30]) by freefall.cdrom.com (8.6.9/8.6.6) with ESMTP id OAA19323 for <FreeBSD-hackers@freefall.cdrom.com>; Thu, 2 Feb 1995 14:40:55 -0800
Received: from blaise.ibp.fr (blaise.ibp.fr [132.227.60.1])
	by ibp.ibp.fr (8.6.8/jtpda-5.0) with SMTP id XAA16062
	; Thu, 2 Feb 1995 23:42:22 +0100
Received: by blaise.ibp.fr (4.1/SMI-4.1)
	id AA17211; Thu, 2 Feb 95 23:40:14 +0100
From: roberto@blaise.ibp.fr (Ollivier ROBERT)
Message-Id: <9502022240.AA17211@blaise.ibp.fr>
Subject: Re: limits (again)
To: guido@gvr.win.tue.nl (Guido van Rooij)
Date: Thu, 2 Feb 1995 23:40:14 +0100 (MET)
Cc: FreeBSD-hackers@freefall.cdrom.com
In-Reply-To: <199502022127.WAA17861@gvr.win.tue.nl> from "Guido van Rooij" at Feb 2, 95 10:27:46 pm
X-Operating-System: FreeBSD 2.1.0-Development ctm#307
X-Mailer: ELM [version 2.4 PL23beta2]
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Content-Length: 585       
Sender: hackers-owner@FreeBSD.org
Precedence: bulk

> Okay, if there are no complaints, I'm gonna implement
> kern.maxfilesperproc
> 
> If people do want other such limits implemented, let them shout and I'll
> try doing that as well.

Not really a limit but a big plus in security :

net.inet.ip.sourceroute

with 0 (which should be the default) you refuse source-routed packets.
We probably should disable only loose source-routing but I don't know
the exact differences between the two.

-- 
Ollivier ROBERT     -=- The daemon is FREE! -=-     roberto@FreeBSD.ORG
   FreeBSD keltia 2.1.0-Development #18: Thu Jan 26 22:22:16 MET 1995