| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20090113134720.5774b442@lxorguk.ukuu.org.uk> Date: Tue, 13 Jan 2009 13:47:20 +0000 From: Alan Cox <alan@...rguk.ukuu.org.uk> To: Theodore Tso <tytso@....edu> Cc: Evgeniy Polyakov <zbr@...emap.net>, David Rientjes <rientjes@...gle.com>, Bill Davidsen <davidsen@....com>, linux-kernel@...r.kernel.org, Andrew Morton <akpm@...ux-foundation.org>, Linus Torvalds <torvalds@...ux-foundation.org> Subject: Re: Linux killed Kenny, bastard! > (i.e., shell support, PAM support in /etc/securitylimits.conf); all > that would need to be done is to teach a few userspace > programs/libraries about the new resource limit. You don't even need that - just define the behaviour of oom_adj to inherit. Of course thats still often totally the wrong behaviour as you'll find out when a key system service is started up by a client that wants to use it that was run by some low privilege untrusted process with tight resource limits. For desktop Jim Gettys proposed a very simple and quite elegant use of this sort of thing which was to let the window manager do some of the work according to what hadn't been used for ages. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists