Date: Tue, 21 Sep 1999 18:01:13 -0700 (PDT) From: Doug <Doug@gorean.org> To: Kip Macy <kip@lyris.com> Cc: Bryan Talbot <btalbot@ucsd.edu>, stable@FreeBSD.ORG Subject: Re: kern.maxfiles and kern.maxfilesperproc Message-ID: <Pine.BSF.4.10.9909211759120.20665-100000@dt014nb6.san.rr.com> In-Reply-To: <Pine.SOL.4.05.9909211645390.16568-100000@luna>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 21 Sep 1999, Kip Macy wrote:
> You are correct -- what one really needs is a per user limit on files --
> there may already be something to that effect, although I do not know of
> it.
That's because you completely disregarded all of the explanations
for the current behavior that were offered to you in -hackers, and you
apparently never even looked at login.conf which does allow you to limit
the number of processes and number of files per process on a per user
basis.
Now please drop this ridiculous thread.
Thanks,
Doug
> On Tue, 21 Sep 1999, Bryan Talbot wrote:
>
> > At 04:23 PM 9/21/99 , Kip Macy wrote:
> > >Thanks. Although having maxfiles == maxfilesperproc might make sense for
> > >special cases e.g. a machine completely dedicated to one process -- It is
> > >dangerous at best for the general case. Any malicious program can make a
> > >machine running FreeBSD non-functional. The default should be set with the
> > >average user in mind, namely protecting him from himself.
> > >
> > >
> > > -Kip
> >
> >
> > But adjusting maxfilesperproc > maxfiles won't protect you from a malicious
> > process or user any more than having maxfilesperproc == maxfiles. Just
> > fork() or run two (or more) processes that open all the file handles. Same
> > result, right?
> >
> > -Bryan
> >
> >
> > =====================================================================
> > IMPORTANT NOTICE: According to certain suggested versions of the
> > Grand Unified Theory, the primary particles constituting this
> > message may decay to nothingness within the next Four Hundred
> > Million Years.
> > =====================================================================
> > "I think not!" said Descartes, who promptly disappeared.
> >
> >
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-stable" in the body of the message
> >
> >
>
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-stable" in the body of the message
>
--
"My mama told me, my mama said, 'don't cry.' She said, 'you're too young a man
to have as many women you got.' I looked at my mother dear and didn't even
crack a smile. I said, 'If women kill me, I don't mind dyin!'"
- John Belushi as "Joliet" Jake Blues, "I Don't Know"
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9909211759120.20665-100000>