Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] Linux and forkbomb - with link
  • From: Derek Fountain <dflists@xxxxxxxxxxxx>
  • Date: Sun, 20 Mar 2005 16:08:19 +0800
  • Message-id: <200503201608.19386.dflists@xxxxxxxxxxxx>
> What I don't understand is that the article mentions that the BSD kernels
> have been modified for some time (years) for this old attack, but linux
> has not. I thought linux was more cutting edge and up to date than that.

Unless I missed something, he talks about *BSD systems and servers, not the
kernels.

It's a default configuration issue, not a kernel issue as such. The kernel
can't really know the demands that are going to be placed on it, so shouldn't
try to restrict them. It should just try to adapt as best it can given the
user's workload. The problem is that most Linux systems, including SUSE,
still ship with a configuration that can give any user all the system
resources. The BSDs haven't done that for years.

--
---
Derek Fountain, on the web here : <a href="http://www.derekfountain.org";>Derek
Fountain</a>

< Previous Next >
Follow Ups