From owner-freebsd-stable Mon Aug 9 13:22:37 1999 Delivered-To: freebsd-stable@freebsd.org Received: from luna.lyris.net (luna.shelby.com [207.90.155.6]) by hub.freebsd.org (Postfix) with ESMTP id 818DB152AF for ; Mon, 9 Aug 1999 13:22:34 -0700 (PDT) (envelope-from kip@lyris.com) Received: from luna.shelby.com by luna.lyris.net (8.9.1b+Sun/SMI-SVR4) id NAA05943; Mon, 9 Aug 1999 13:19:28 -0700 (PDT) Received: from (luna.shelby.com [207.90.155.6]) by luna.shelby.com with SMTP (MailShield v1.50); Mon, 09 Aug 1999 13:19:28 -0700 Date: Mon, 9 Aug 1999 13:19:28 -0700 (PDT) From: Kip Macy X-Sender: kip@luna To: Marc Olzheim Cc: Greg Lynn , freebsd-stable@freebsd.org Subject: Re: testsockbuf.c In-Reply-To: <19990809213449.A5585@stack.nl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-SMTP-HELO: luna X-SMTP-MAIL-FROM: kip@lyris.com X-SMTP-RCPT-TO: marcolz@stack.nl,dglynn@vaview5.vavu.vt.edu,freebsd-stable@freebsd.org X-SMTP-PEER-INFO: luna.shelby.com [207.90.155.6] Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Would raising the number of NMBCLUSTERS help? Or would it just postpone the problem? Solaris/x86 also does not have any problems with the code. -Kip On Mon, 9 Aug 1999, Marc Olzheim wrote: > > Isn't this a huge problem for ordinary users on a system?? I mean > > there aren't any user restrictions on sockets right? I imagine > > there will be some sort of follow up on this exploit? > > Well, there is a 256k limit per socket of the buffer (I & O), try > sysctl kern.maxsockbuf and you can limit the number of sockets with > the maximum number of filedescriptors per process (ulimit -a), but that's > just not safe enough. > > It seems that the kernel doesn't check wether the space it wants to > allocate still exists or not. > > Marc > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message