Hi Robert, On Sun, May 12, 2013 at 10:15 PM, Robert Gierzinger <robert.gierzin...@gmx.at> wrote: > Is there anything planned to restrict exhaustive process generation in a > guest or any other means to defend against fork bombs?
In recent kernels (such as 3.9.x) you have `memory.kmem.limit_in_bytes` which could be use for that purpose. see https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/plain/Documentation/cgroups/memory.txt Regards, -- William ------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. This 200-page book is written by three acclaimed leaders in the field. The early access version is available now. Download your free book today! http://p.sf.net/sfu/neotech_d2d_may _______________________________________________ Lxc-devel mailing list Lxc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-devel
