Bugtraq: Re: tmpwatch: local DoS : fork()bomb as root

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: tmpwatch: local DoS : fork()bomb as root

From: Lukasz Trabinski <lukasz () LT WSISIZ EDU PL>
Date: Sat, 9 Sep 2000 18:12:53 +0200

On Sat, 9 Sep 2000, zenith parsec wrote:


Make a directory 6000 deep in /tmp

[...]

slocate also segfaults on that directory.
 
$ ./a 
to delete all the ./A/A/A/A/..... directories you own.


Generally, you can set quota limit for inode-softlimit and inode-hardlimit
(you should set it for /tmp filesystem, when you have users on your
machine).

For example:

inodes in use: 1, limits (soft =512 , hard = 1024),

Then user can not create more than 1024 files or directories, Of course 
you can set more restrictive limits. :-)



-- 
*[ Łukasz Trąbiński ]*
SysAdmin @wsisiz.edu.pl

By Date By Thread

Current thread:

tmpwatch: local DoS : fork()bomb as root zenith parsec (Sep 12)
- Re: tmpwatch: local DoS : fork()bomb as root stanislav shalunov (Sep 12)
- Re: tmpwatch: local DoS : fork()bomb as root Lukasz Trabinski (Sep 12)