From owner-freebsd-security Sun Jul 26 04:11:09 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA12414 for freebsd-security-outgoing; Sun, 26 Jul 1998 04:11:09 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from ns0.fast.net.uk (ns0.fast.net.uk [194.207.104.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA12409 for ; Sun, 26 Jul 1998 04:11:07 -0700 (PDT) (envelope-from netadmin@fastnet.co.uk) Received: from bofh.fast.net.uk (bofh.fast.net.uk [194.207.104.22]) by ns0.fast.net.uk (8.9.0/8.8.7) with ESMTP id MAA10360; Sun, 26 Jul 1998 12:10:38 +0100 (BST) Received: from kronus (na.nu.na.nu.na.nu [194.207.104.143]) by bofh.fast.net.uk (8.8.8/8.8.5) with SMTP id MAA07807; Sun, 26 Jul 1998 12:10:38 +0100 (BST) Message-ID: <003a01bdb883$a5a19aa0$8f68cfc2@kronus> From: "Jay Tribick" To: "Nicholas Charles Brawn" Cc: Subject: Re: preventing fork bombs Date: Sun, 26 Jul 1998 11:49:10 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org |How can someone limit/prevent fork bomb attacks on your system. I |recently tried one on myself after modifying kern.maxprocperuid (thinking |that should prevent it), and got my machine up to a load of over 150 |before I killed it. | |The above effectively freezing my system. :\ I was wondering this, and after a few hours found the solution - in /etc/login.conf nice your shell accounts users down to 20 and make their maxprocess 32. This will successfully lock themselves out of the system but will not affect any other users. Regards, Jay Tribick | Network Administrator | FastNet International To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message