12.10.10, 00:54, "Ted Unangst" <ted.unan...@gmail.com>:
> On Mon, Oct 11, 2010 at 4:41 PM, Dmitry-T wrote:
> > Run as _normal user_:
> > dd if=/dev/urandom of=/dev/null
>
> > It is not secure. One user script or program may load CPU and
> > database or another servers lost speed in disk operations.
> > This is hole for DOS attacks in OpenBSD design.
> >
> > How you use the OpenBSD as web servers and hosting platform?
> > Permanently catch and kill processes?
>
> echo yes | rmuser `ps ua -p \`pgrep dd\` | tail -1 | awk '{print $1}'`
This is naive :)
dd only example, you need to search users who load CPU.
And with voracious programs you also have to be careful.
--
Dmitry Telegin
