Public bug reported: Binary package hint: libpam-modules
In order to prevent some malicious instructions, Ubuntu should come with some limits in /etc/security/limits.conf. It's easy to a new user run a command like that described in http://en.wikipedia.org/wiki/Fork_bomb, instructed by a malicious user, and have to reboot your system. In that case, number of process should be set. I don't know what is the right number, 500, 1000? But i guess it should be exist in a default installation. The same sort of behavior applies to memory, number of files, etc. I let to the Security Team the task to find out the right numbers. ;) ** Affects: pam (Ubuntu) Importance: Undecided Status: Unconfirmed ** This bug has been flagged as a security issue -- Ubuntu should come with some limits (ulimit) https://launchpad.net/bugs/81631 -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
