[26115] in bugtraq
Re: Linux kernels DoSable by file-max limit
daemon@ATHENA.MIT.EDU (Jim Breton)
Wed Jul 10 19:27:53 2002
Date: Wed, 10 Jul 2002 01:04:26 +0000
From: Jim Breton <jamesb-bugtraq@alongtheway.com>
To: bugtraq@securityfocus.com
Message-ID: <20020710010426083150.G1304@alongtheway.com>
Mail-Followup-To: bugtraq@securityfocus.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Pine.LNX.4.42.0207082112480.717-100000@nimue.bos.bindview.com>
On Mon, Jul 08, 2002 at 09:30:34PM -0400, Michal Zalewski wrote:
> And they can still most likely bypass your limit by putting something
> smart in their .procmailrc / .forward / .qmail, or in so many other ways.
One could use 'initscript' to plug many of those holes:
INITSCRIPT(5) Linux System Administrator's Manual INITSCRIPT(5)
NAME
initscript - script that executes inittab commands.
SYNOPSIS
/bin/sh /etc/initscript id runlevels action process
When the shell script /etc/initscript is present, init
will use it to execute the commands from inittab. This
script can be used to set things like ulimit and umask
default values for every process.
