From owner-freebsd-stable Tue Sep 21 18: 1:23 1999 Delivered-To: freebsd-stable@freebsd.org Received: from dt014nb6.san.rr.com (dt014nb6.san.rr.com [24.30.129.182]) by hub.freebsd.org (Postfix) with ESMTP id AC91C15440 for ; Tue, 21 Sep 1999 18:01:20 -0700 (PDT) (envelope-from Doug@gorean.org) Received: from localhost (doug@localhost) by dt014nb6.san.rr.com (8.9.3/8.8.8) with ESMTP id SAA20821; Tue, 21 Sep 1999 18:01:13 -0700 (PDT) (envelope-from Doug@gorean.org) Date: Tue, 21 Sep 1999 18:01:13 -0700 (PDT) From: Doug X-Sender: doug@dt014nb6.san.rr.com To: Kip Macy Cc: Bryan Talbot , stable@FreeBSD.ORG Subject: Re: kern.maxfiles and kern.maxfilesperproc In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 21 Sep 1999, Kip Macy wrote: > You are correct -- what one really needs is a per user limit on files -- > there may already be something to that effect, although I do not know of > it. That's because you completely disregarded all of the explanations for the current behavior that were offered to you in -hackers, and you apparently never even looked at login.conf which does allow you to limit the number of processes and number of files per process on a per user basis. Now please drop this ridiculous thread. Thanks, Doug > On Tue, 21 Sep 1999, Bryan Talbot wrote: > > > At 04:23 PM 9/21/99 , Kip Macy wrote: > > >Thanks. Although having maxfiles == maxfilesperproc might make sense for > > >special cases e.g. a machine completely dedicated to one process -- It is > > >dangerous at best for the general case. Any malicious program can make a > > >machine running FreeBSD non-functional. The default should be set with the > > >average user in mind, namely protecting him from himself. > > > > > > > > > -Kip > > > > > > But adjusting maxfilesperproc > maxfiles won't protect you from a malicious > > process or user any more than having maxfilesperproc == maxfiles. Just > > fork() or run two (or more) processes that open all the file handles. Same > > result, right? > > > > -Bryan > > > > > > ===================================================================== > > IMPORTANT NOTICE: According to certain suggested versions of the > > Grand Unified Theory, the primary particles constituting this > > message may decay to nothingness within the next Four Hundred > > Million Years. > > ===================================================================== > > "I think not!" said Descartes, who promptly disappeared. > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-stable" in the body of the message > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > -- "My mama told me, my mama said, 'don't cry.' She said, 'you're too young a man to have as many women you got.' I looked at my mother dear and didn't even crack a smile. I said, 'If women kill me, I don't mind dyin!'" - John Belushi as "Joliet" Jake Blues, "I Don't Know" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message