From owner-freebsd-security Wed Jul 29 20:08:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA18499 for freebsd-security-outgoing; Wed, 29 Jul 1998 20:08:40 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from tasam.com (tasam.com [198.232.144.22]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA18488 for ; Wed, 29 Jul 1998 20:08:34 -0700 (PDT) (envelope-from clash@tasam.com) Received: from bug (bug.tasam.com [198.232.144.254]) by tasam.com (8.9.1/8.9.1) with SMTP id WAA13586 for ; Wed, 29 Jul 1998 22:07:13 -0500 (EST) Message-ID: <006101bdbb67$38d1c8a0$0171a1ce@bug.tasam.com> From: "Joe Gleason" To: Subject: Re: preventing fork bombs Date: Wed, 29 Jul 1998 23:07:41 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Last time I tried that on my shell server, it worked but not for things run from cron. So an especialy evil and crafy user could just run their fork bomb from cron. Joe Gleason Tasam >man login.conf > >set limits there for login classes. > >-Alfred > >On Sun, 26 Jul 1998, Nicholas Charles Brawn wrote: > >> How can someone limit/prevent fork bomb attacks on your system. I >> recently tried one on myself after modifying kern.maxprocperuid (thinking >> that should prevent it), and got my machine up to a load of over 150 >> before I killed it. >> >> The simple code used was: >> >> #include >> >> main(void) { >> while(1) { >> fork(); >> } >> } >> >> The above effectively freezing my system. :\ >> >> Anyone got any ideas? >> >> Nick >> >> -- >> Email: ncb05@uow.edu.au - http://rabble.uow.edu.au/~nick >> Key fingerprint = DE 30 33 D3 16 91 C8 8D A7 F8 70 03 B7 77 1A 2A >> "When in doubt, ask someone wiser than yourself..." -unknown >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe security" in the body of the message >> > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message