On 2017/07/20 11:56, Marco Pfatschbacher wrote: > > We also have fd accounting in a few daemons to pause accept when > > we're out of fds (ENFILE or EMFILE), but this can be implemented in > > a separate commit. > > Not sure what that solves. sshd has MaxStartups and it's very > easy to DoS it.
I don't know if it applies here or not, but some daemons had severe problems if they bumped into openfiles-cur or kern.maxfiles (e.g. spinning permanently, sometimes writing a log entry each time), protection was added so that in most cases they would recover after the load conditions had passed.
