On Mon, 13 Sep 1999, Matthew Dillon wrote: > The case that is causing the panics is with the non-interrupt mbuf > allocation mechanism. Specifically, the case where M_WAIT is used. > > The second problem under discussion, which really ought to be separated > out from the mbuf panic problem, is the potential for a deadlock or > denial of service attack when the system is attacked in a manner that > eats all available mbufs. >
The traditional way to prevent resource-starvation DoSes from the user populus has been to add administrative limits. Using RLIMIT_SBSIZE does this nicely. Yes, this isn't actually fixing the panics, but it is good preventative medicine. > -Matt > Matthew Dillon > <dil...@backplane.com> > -- Brian Fundakowski Feldman \ FreeBSD: The Power to Serve! / gr...@freebsd.org `------------------------------' To Unsubscribe: send mail to majord...@freebsd.org with "unsubscribe freebsd-hackers" in the body of the message
