On Mon, 13 Sep 1999, Matthew Dillon wrote:
> The case that is causing the panics is with the non-interrupt mbuf
> allocation mechanism. Specifically, the case where M_WAIT is used.
>
> The second problem under discussion, which really ought to be separated
> out from the mbuf panic problem, is the potential for a deadlock or
> denial of service attack when the system is attacked in a manner that
> eats all available mbufs.
>
The traditional way to prevent resource-starvation DoSes from the user
populus has been to add administrative limits. Using RLIMIT_SBSIZE does
this nicely. Yes, this isn't actually fixing the panics, but it is
good preventative medicine.
> -Matt
> Matthew Dillon
> <[EMAIL PROTECTED]>
>
--
Brian Fundakowski Feldman \ FreeBSD: The Power to Serve! /
[EMAIL PROTECTED] `------------------------------'
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message