+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">

+<HTML>

+ <HEAD>

+ <TITLE> [Mageia-dev] forkbomb protection

+ </TITLE>

+ <LINK REL="Index" HREF="index.html" >

+ <LINK REL="made" HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20forkbomb%20protection&In-Reply-To=%3Cop.wohz5vv1n7mcit%40hodgins.homeip.net%3E">

+ <META NAME="robots" CONTENT="index,nofollow">

+ <META http-equiv="Content-Type" content="text/html; charset=us-ascii">

+ <LINK REL="Previous" HREF="020382.html">

+ <LINK REL="Next" HREF="020385.html">

+ </HEAD>

+ <BODY BGCOLOR="#ffffff">

+ <H1>[Mageia-dev] forkbomb protection</H1>

+ <B>David W. Hodgins</B>

+ <A HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20forkbomb%20protection&In-Reply-To=%3Cop.wohz5vv1n7mcit%40hodgins.homeip.net%3E"

+ TITLE="[Mageia-dev] forkbomb protection">davidwhodgins at gmail.com

+ </A><BR>

+ <I>Wed Nov 28 20:23:45 CET 2012</I>

+ <P><UL>

+ <LI>Previous message: <A HREF="020382.html">[Mageia-dev] forkbomb protection

+</A></li>

+ <LI>Next message: <A HREF="020385.html">[Mageia-dev] [bugs] [Bug 8230] Too short timeout

+</A></li>

+ <LI> <B>Messages sorted by:</B>

+ <a href="date.html#20387">[ date ]</a>

+ <a href="thread.html#20387">[ thread ]</a>

+ <a href="subject.html#20387">[ subject ]</a>

+ <a href="author.html#20387">[ author ]</a>

+ </LI>

+ </UL>

+ <HR>

+<!--beginarticle-->

+<PRE>On Wed, 28 Nov 2012 13:00:05 -0500, Johnny A. Solbu &lt;<A HREF="https://www.mageia.org/mailman/listinfo/mageia-dev">cooker at solbu.net</A>&gt; wrote:

+

+&gt;<i> On Wednesday 28. November 2012 17.53, David Walser wrote:

+</I>&gt;&gt;<i> Their pam package has a /etc/security/limits.d/90-nproc.conf file that has:

+</I>&gt;<i>

+</I>&gt;&gt;<i> * soft nproc 1024

+</I>&gt;&gt;<i>

+</I>&gt;&gt;<i> As the last comment on the bug says, it's a bit confusing that it's in limits.d/ and not the limits.conf file itself,

+</I>&gt;<i>

+</I>&gt;<i> His point is that any limits set in &#171;/etc/security/limits.d/&#187; overrides the &#171;limits.conf&#187; file.

+</I>&gt;<i>

+</I>&gt;&gt;<i> and in fact I'm not sure what is responsible for processing limits.d/* as limits.conf says nothing about it (Fedora's is the exact same as ours).

+</I>&gt;<i>

+</I>&gt;<i> We should add some comments in &#171;/etc/security/limits.conf&#187; about it.

+</I>&gt;<i>

+</I>&gt;&gt;<i> Anyway, one way or another it would be nice to have this limit set by default on Mageia, IMHO. WDYT?

+</I>&gt;<i>

+</I>&gt;<i> I think we should have this.

+</I>

+This is also being discussed in the usenet newsgroup alt.os.linux.mageia.

+

+I've confirmed the forkbomb will kill my Mageia 2 x86-64 system, with

+the default value for nprocs of 127910. Interestingly, it doesn't kill

+the system if I run the forkbomb right after rebooting, only if it's been

+in use for a while. This is a quad core with 16GB of ram.

+

+I've added a line to /etc/security/limits.conf on my system, with

+* hard nproc 10000

+

+The forkbomb no longer has impact, except for the need to kill all

+of the user's bash processes.

+

+# ps -A|wc -l

+218

+

+I think 10000 should be more than adequate, yet low enough to stop the

+bomb from killing the system.

+

+Regards, Dave Hodgins

+</PRE>

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+

+<!--endarticle-->

+ <HR>

+ <P><UL>

+ <!--threads-->

+ <LI>Previous message: <A HREF="020382.html">[Mageia-dev] forkbomb protection

+</A></li>

+ <LI>Next message: <A HREF="020385.html">[Mageia-dev] [bugs] [Bug 8230] Too short timeout

+</A></li>

+ <LI> <B>Messages sorted by:</B>

+ <a href="date.html#20387">[ date ]</a>

+ <a href="thread.html#20387">[ thread ]</a>

+ <a href="subject.html#20387">[ subject ]</a>

+ <a href="author.html#20387">[ author ]</a>

+ </LI>

+ </UL>

+

+<hr>

+<a href="https://www.mageia.org/mailman/listinfo/mageia-dev">More information about the Mageia-dev

+mailing list</a><br>

+</body></html>