--On Friday, September 23, 2005 3:43 PM -0400 Stan Bubrouski <[EMAIL PROTECTED]> wrote:
Yeah and ulimits can easily be bypassed with creative fork bombs. This is more of a problem on Linux than *BSD though.
Oh? It's my understanding that loose default ulimits are why Linux is susceptible to fork bombs, and that tightening up the setting eliminates that issue. Since most Linux boxes are single-user or servers with no local users, setting the default to something loose leads to less support complaints. But you want to tighten it up if you have untrusted local users. That includes web users who can launch processes, either by Perl or PHP. Blocking shell access isn't a panacea against fork bombs. _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
