From owner-freebsd-stable Mon Feb 26 20: 5: 4 2001 Delivered-To: freebsd-stable@freebsd.org Received: from shell.25bway.compuhelp.com (shell.25bway.compuhelp.com [209.191.146.4]) by hub.freebsd.org (Postfix) with ESMTP id C0AF837B401 for ; Mon, 26 Feb 2001 20:05:01 -0800 (PST) (envelope-from fran@reyes.somos.net) Received: from zoraida.reyes.somos.net ([216.223.57.68]) by shell.25bway.compuhelp.com (8.9.3/8.8.7) with ESMTP id XAA05878; Mon, 26 Feb 2001 23:04:58 -0500 Date: Mon, 26 Feb 2001 23:08:36 -0500 (EST) From: Francisco Reyes To: Matt Heckaman Cc: Chris Byrnes , FreeBSD Stable , Jonathan Slivko Subject: Re: Possible Security Vulnerability In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sun, 25 Feb 2001, Matt Heckaman wrote: > Yep Chris, which is why people *need* to limit regular users via > login.conf, it can effecively nuke any of these little games the users may > desire to play with the machine, don't we know it. :) What are some sensible variables to use? From doing man login.conf it seems the following variables may be usefull: filesize size Maximum file size limit. datasize size Maximum data size limit. stacksize size Maximum stack size limit. memoryuse size Maximum of core memory use size maxproc number Maximum number of processes. openfiles number Maximum number of open files per process. sbsize size Maximum permitted socketbuffer (?? what is this) cputime doesn't seem to be of much general use. In my case I don't need to limit how long users are logged in. What is the difference between filesize and datasize? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message