From owner-freebsd-hackers@freebsd.org Wed Jan 27 07:11:15 2016 Return-Path: Delivered-To: freebsd-hackers@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1242CA6E9F5 for ; Wed, 27 Jan 2016 07:11:15 +0000 (UTC) (envelope-from allanjude@freebsd.org) Received: from mx1.scaleengine.net (mx1.scaleengine.net [209.51.186.6]) by mx1.freebsd.org (Postfix) with ESMTP id E25931072 for ; Wed, 27 Jan 2016 07:11:14 +0000 (UTC) (envelope-from allanjude@freebsd.org) Received: from [10.1.1.2] (unknown [10.1.1.2]) (Authenticated sender: allanjude.freebsd@scaleengine.com) by mx1.scaleengine.net (Postfix) with ESMTPSA id 452D0D3A7 for ; Wed, 27 Jan 2016 07:11:08 +0000 (UTC) Subject: Re: syslogd(8) with OOM Killer protection To: freebsd-hackers@freebsd.org References: From: Allan Jude Message-ID: <56A86D91.3040709@freebsd.org> Date: Wed, 27 Jan 2016 02:11:13 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="tlkENKVR0oTkP9DcHuRCWUJmuqrquIRh4" X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jan 2016 07:11:15 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --tlkENKVR0oTkP9DcHuRCWUJmuqrquIRh4 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable On 2016-01-27 01:21, Marcelo Araujo wrote: > Hi guys, >=20 > I would like to know your opinion about this REVIEW[1]. > The basic idea is protect by default the syslogd(8) against been killed= by > OOM with an option to disable the protection. >=20 > Some people like the idea, other people would prefer something more glo= bal > where we can protect any daemon by the discretion of our choice. >=20 > Thoughts? >=20 >=20 > [1] https://reviews.freebsd.org/D4973 >=20 >=20 > Best, >=20 I do like the idea of generalizing it, say via rc.subr So you can just do: someapp_protect=3DYES (and maybe syslogd has this enabled by default in /etc/defaults/rc.conf) and it prefixes the start command with protect -i.= --=20 Allan Jude --tlkENKVR0oTkP9DcHuRCWUJmuqrquIRh4 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQIcBAEBAgAGBQJWqG2RAAoJEBmVNT4SmAt+aZ4QAJOE2Y/u2Jo/DBMjOPhy1rXq EvzhwvwIHiE+0tK7u0oBSG46/E1uugN/ugz8Yo9SekeKHdXQEXHnCls+/KulOaJ9 lYvc4fiY/U0N8qzqaIeurldt33ZNgGneORL+slgWyU/amr2eLC/en5DQZX1d9/rQ aSceY8JDZ8z+1sxZlEA/9ujxhDynh7IsD3xhHlhBvHNCYcD92BuRPtStRrAv55Ul QYmRlRdGnXDTTRZeZewZ2BWMu5Kbyx3czrebZEaUk/bJOH9Mvec1khOm1IG6fJid OKxd5dihsOpNut6pmogsIWHxXmr/J9FOOK7hb/OxNjQWy6IFxgqwW2pbIg35PX57 kn6Q/FnAnP38ZGSMrPTZBDcw/T4a17U0wFhhlGaGQUgIfI/JG0eGbR4qK+EvHdE7 V8FPuimVLAAqDsJQ52skxQZCqvb5+x5dXfOQiZtxpiCy9+QAUyLmTviAEg1tFlfu OTA8eNLvwelR45nn85B0NGJ6ufxSX63UFkatEqGLVLcx/32+s5qim6CLZmRvrIKS TIxdIBed2rrG6L9wzFxbGm1OjwFsvLGXQm2TK2OfiV3xV8ndswUdNTPZKWo8MIc5 zLYbFqsYRmuZb8lQg/SDUlP0b4UBBMar2MHKNsV+vmSefoHkYZk9sm3M4uAioN37 2ueSBZTsmY6ECI5brUKB =Uux7 -----END PGP SIGNATURE----- --tlkENKVR0oTkP9DcHuRCWUJmuqrquIRh4--