grsecurity forums


https://forums.grsecurity.net./

Grsecurity in general

https://forums.grsecurity.net./viewtopic.php?f=1&t=118

Page 1 of 1

Grsecurity in general

PostPosted: Sun Aug 18, 2002 8:40 am
by Va|eK
somethign that iv found in just about every kernel is a file limit exploit is there a way to implment something that where that exploit wont affect the system even tho the only fix seems to be to reboot the machine? since there are exploits out there in c code that if ran as root it will exploit that and when you run any other command other thna ps x (not sure about toher cmds tho only tested the exploiut on my box didnt go into real depth tho) it will tell you the max # of open files exceeded.

PostPosted: Wed Aug 21, 2002 9:15 am
by spender
grsecurity has process-based resource restrictions. That's what you would use to stop things like that. RES_NOFILE to be specific

-Brad
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/