Ubuntu

Lack(s) in /etc/security/limits.conf

Bug #400992 reported by L_d_v_c@ on 2009-07-18

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Ubuntu	Invalid	Undecided	Unassigned

Bug Description

# Hello.
# /etc/security/limits.conf is incomplete and lets fork bomb run and crach O.S.
# I added the famous line :

@users soft nproc 200

# @users must be remplaced ...
# and fork bomb is intercepted.
# ludovic@ubuntu:~$ :(){ :|:& };:
# [1] 7481
# ludovic@ubuntu:~$ bash: fork: Ressource temporairement non disponible
# bash: fork: Ressource temporairement non disponible

# [1]+ Complété : | :
# ludovic@ubuntu:~$

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2009-07-20:

Thanks for taking the time to report this bug and helping to make Ubuntu better. This is not a bug, but rather expected behavior:
https://wiki.ubuntu.com/SecurityTeam/FAQ#Local%20Denial%20of%20Service

Please feel free to report any other bugs you may find.

security vulnerability:	yes → no
visibility:	private → public
Changed in ubuntu:
status:	New → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.