Fork bomb protection not working : Amount of processes not limited

Posted by d_inevitable on Ask Ubuntu See other posts from Ask Ubuntu or by d_inevitable
Published on 2012-03-23T21:42:11Z Indexed on 2012/03/23 23:39 UTC
Read the original article Hit count: 471

Filed under:

11.10

|

process

|

limit

|

fork-bomb

I just came to realize that my system is not limiting the amount of processes per user properly thus not preventing a user from dring a fork-bomb and crashing the entire system:

user@thebe:~$ cat /etc/security/limits.conf | grep user
user        hard    nproc   512
user@thebe:~$ ulimit -u
1024
user@thebe:~$ :(){ :|:& };:
[1] 2559
user@thebe:~$ ht-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
-bash: fork: Cannot allocate memory
...
Connection to thebe closed by remote host.

Is this a bug or why is it ignoring the limit in limits.conf and why is not applying the limit that ulimit -n claims it to be?

PS: I really don't think the memory limit is hit before the process limit. This machine has 8GB ram and it was using only 4% of it at the time when I dropped the fork bomb.

© Ask Ubuntu or respective owner

Related posts about 11.10

Upgrade Kubuntu 11.10 to 12.10 I get error code that 11.10 is outdated

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I installed Kubuntu 11.10 on top of Windows 7. Everything works fine. I tried to update 11.10 to 12.10 and I get error Code that 11.10 is outdated and not supported. Update stops. I downloaded 12.10 iso but there is no upgrade option, just install. How can I remove the 11.10 installation and install… >>> More
Intel GMA 500 support for 11.10

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I would like to know if the new open-source video driver included in kernel 3.0.x for the Intel GMA 500 will be included by default in the kernel that will be shipped in OO. The driver support of this GFX chipset has always been poor and mainly community-driven, now finally we have a KMS open-source… >>> More
Error Ubuntu 11.10 despues de instalar [Error after installing Ubuntu 11.10]

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
instale ubuntu 11.10, termino de instalar y no tiene nada, ni aplicaciones, ni esa barrita lateral de unity, no tiene nada, ni si quiera la barra donde aparece la hora; porque? y me aparece un cuadro diciendo que hay un error en el disco y que el fallo es inminente , que es? SMART no entiendo, ayuda Y… >>> More
How to enable 3D acceleration under VMware workstation 8, Ubuntu 11.10 host, Ubuntu 11.10 guest

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I saw there are similar questions, but I don't think they answer exactly my questions. Did anyone managed to get 3D acceleration work under VMWare workstation 8? I have VMware 8.01 installed on Ubuntu 11.10. The guest I am trying is also Ubuntu 11.10. I manually installed vmware-tools and it went… >>> More
The volume "filesystem root" has only 0 bytes disk space remaining?

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I installed 11.10 ~two weeks ago and run into some strange troubles recently. Installation was on brand new laptop with clear 128GB SSD. I opted for encrypting home directory. Apart from that I accepted defaults during the installation. There is no other OS on my laptop. I had circa 40GB in use… >>> More

Related posts about process

Enterprise Process Maps: A Process Picture worth a Million Words

as seen on Oracle Blogs - Search for 'Oracle Blogs'
p { margin-bottom: 0.08in; }h1 { margin-top: 0.33in; margin-bottom: 0in; color: rgb(54, 95, 145); page-break-inside: avoid; }h1.western { font-family: "Cambria",serif; font-size: 14pt; }h1.cjk { font-family: "DejaVu Sans"; font-size: 14pt; }h1.ctl { font-size: 14pt; } Getting Started with Business… >>> More
Issues with signal handling [closed]

as seen on Programmers - Search for 'Programmers'
I am trying to actually study the signal handling behavior in multiprocess system. I have a system where there are three signal generating processes generating signals of type SIGUSR1 and SIGUSR1. I have two handler processes that handle a particular type of signal. I have another monitoring process… >>> More
Cannot login to Ubuntu 14.04 returns to the login screen

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I updated to 14.04 from 12.04.03. I was using cinammon at that time. When I upgraded to 14.04 ,I got a serious problem. I was unable to login, as whenever I hit enter after entering password, it is taking me straight to login screen again.I unable to login like Guest even. So, here is my .xsession-errors… >>> More
aide --init show lots of errors

as seen on Server Fault - Search for 'Server Fault'
I have a brand new centos 6.2 server. The first thing I did is yum -y install aide and then next I did aide --init. Below is a whole lot of errors I got.What does it means must I reinstall it? Or leave it ? /usr/sbin/prelink: /usr/sbin/lusermod: at least one of file's dependencies has changed since… >>> More
logon process process name RASMAN

as seen on Server Fault - Search for 'Server Fault'
today when i check my event log on windows 2003 server i found this event i am not sure what is this can you explain what is this event for ? Thanks >>> More