Re: insecure scheduler in OpenBSD 4.7

2010-12-17 Thread Kevin Chadwick
On Thu, 16 Dec 2010 19:56:50 -0500 "Jeremy O'Brien" wrote: > On Tue, Oct 12, 2010 at 01:57:20PM +0200, Alexandre Ratchov wrote: > > On Tue, Oct 12, 2010 at 12:41:04AM +0400, Dmitry-T wrote: > > > Try to recover ballance: > > > renice 20 -p 30996 > > > renice -20 -p 21919 25914 754 > > ^^

Re: insecure scheduler in OpenBSD 4.7

2010-12-16 Thread Jeremy O'Brien
On Tue, Oct 12, 2010 at 01:57:20PM +0200, Alexandre Ratchov wrote: > On Tue, Oct 12, 2010 at 12:41:04AM +0400, Dmitry-T wrote: > > Try to recover ballance: > > renice 20 -p 30996 > > renice -20 -p 21919 25914 754 > ^ > > If you run any cpu bound process with priority -20, you will giv

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread Christiano F. Haesbaert
Russian rappers... go figure

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread Jordi Espasa Clofent
How you use the OpenBSD as web servers and hosting platform? Permanently catch and kill processes? OpenBSD is a great solution as a web-hosting platform; no more to say: it is. I've been involved for more than 3 years in web-hosting industry and I know the facts and what are you talking about

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread J Sisson
On Mon, Oct 11, 2010 at 5:09 PM, Dmitry-T wrote: > dd only example. > Look around: Linux, Mac OS X, FreeBSD... why defend a design error? > > Because Linux/Mac OS X/FreeBSD are the yardsticks that all Unix systems must measure up to, right?

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread Дмитрий Царьков
On Tue, Oct 12, 2010 at 12:09 AM, Dmitry-T wrote: > dd only example. > Look around: Linux, Mac OS X, FreeBSD... why defend a design error? I just wanted to wonder, what are You doing here if You think that OpenBSD developpers are incompetent and tend to protect any of their deQisions regardless

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread Oliver Peter
On Tue, 12 Oct 2010 13:57:20 +0200 Alexandre Ratchov wrote: > > It is not secure. One user script or program may load CPU and > > database or another servers lost speed in disk operations. > > This is hole for DOS attacks in OpenBSD design. > > Yeah, this is an attack root can do by renicing a

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread Alexandre Ratchov
On Tue, Oct 12, 2010 at 12:41:04AM +0400, Dmitry-T wrote: > I'm install OpenBSD 4.7 (dmesg attached) > > uname -a > OpenBSD d1.my.domain 4.7 GENERIC#112 amd64 > > Run as root: > dd if=/dev/wd0c of=/dev/null bs=1m & > dd if=/dev/wd0c of=/dev/null bs=1m & > dd if=/dev/wd0c of=/dev/null bs=1m & > >

Re: insecure scheduler in OpenBSD 4.7

2010-10-12 Thread Jean-Francois
I've been convinced not to biy NVidia anymore. Le Tuesday 12 October 2010 06:04:27, Tomas Bodzar a C)crit : > First of all people don't use NVIDIA crap for hosting platform (or any > other use). Or at least they try to avoid it as much as possible. As > you can see in your dmesg you have quite a l

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Tomas Bodzar
First of all people don't use NVIDIA crap for hosting platform (or any other use). Or at least they try to avoid it as much as possible. As you can see in your dmesg you have quite a lot of unsupported parts of HW (or badly working/set). It's fault of other OSs' that NVIDIA plays game about "avail

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Fred Crowson
On 11 October 2010 23:49, Brad Tilley wrote: > On 10/11/2010 04:59 PM, Martin Schrvder wrote: >> 2010/10/11 Dmitry-T : >>> How you use the OpenBSD as web servers and hosting platform? >> >> RTFAQ >> >>> Permanently catch and kill processes? >> >> man ulimit > > What do you see when you man ulimit?

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Brad Tilley
On 10/11/2010 04:59 PM, Martin Schrvder wrote: > 2010/10/11 Dmitry-T : >> How you use the OpenBSD as web servers and hosting platform? > > RTFAQ > >> Permanently catch and kill processes? > > man ulimit What do you see when you man ulimit? > Best >Martin

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Gilles Chehade
On Tue, Oct 12, 2010 at 02:09:58AM +0400, Dmitry-T wrote: > 12.10.10, 01:22, "Firas Kraiem" : > > > You're the naive one. If a user can DOS the system just by doing dd, it > > means the system's policy is very weak, so the user can probably just as > > well throw a forkbomb. > > dd only exampl

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Dmitry-T
12.10.10, 01:22, "Firas Kraiem" : > You're the naive one. If a user can DOS the system just by doing dd, it > means the system's policy is very weak, so the user can probably just as > well throw a forkbomb. dd only example. Look around: Linux, Mac OS X, FreeBSD... why defend a design error?

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Dmitry-T
12.10.10, 00:59, "Martin SchrC6der" : > 2010/10/11 Dmitry-T : > > How you use the OpenBSD as web servers and hosting platform? > > RTFAQ I'm search "hosting" in FAQ and find only 14.18 - Optimizing disk performance > > Permanently catch and kill processes? > > man ulimit It is not a p

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Firas Kraiem
On 11/10/2010 23:12, Dmitry-T wrote: > 12.10.10, 00:54, "Ted Unangst" : > >> On Mon, Oct 11, 2010 at 4:41 PM, Dmitry-T wrote: >> > Run as _normal user_: >> > dd if=/dev/urandom of=/dev/null >> >> > It is not secure. One user script or program may load CPU and >> > database or another server

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Henning Brauer
* Dmitry-T [2010-10-11 22:45]: > How you use the OpenBSD as web servers and hosting platform? > Permanently catch and kill processes? you have repeatedly demonstrated that you plain don't understand a) UNIX b) the numbers you see c) the fact that a computer has more ressources than a freakin' CPU

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Dmitry-T
12.10.10, 00:54, "Ted Unangst" : > On Mon, Oct 11, 2010 at 4:41 PM, Dmitry-T wrote: > > Run as _normal user_: > > dd if=/dev/urandom of=/dev/null > > > It is not secure. One user script or program may load CPU and > > database or another servers lost speed in disk operations. > > This is h

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Martin Schröder
2010/10/11 Dmitry-T : > How you use the OpenBSD as web servers and hosting platform? RTFAQ > Permanently catch and kill processes? man ulimit Best Martin

Re: insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Ted Unangst
On Mon, Oct 11, 2010 at 4:41 PM, Dmitry-T wrote: > Run as _normal user_: > dd if=/dev/urandom of=/dev/null > It is not secure. One user script or program may load CPU and > database or another servers lost speed in disk operations. > This is hole for DOS attacks in OpenBSD design. > > How you use

insecure scheduler in OpenBSD 4.7

2010-10-11 Thread Dmitry-T
I'm install OpenBSD 4.7 (dmesg attached) uname -a OpenBSD d1.my.domain 4.7 GENERIC#112 amd64 Run as root: dd if=/dev/wd0c of=/dev/null bs=1m & dd if=/dev/wd0c of=/dev/null bs=1m & dd if=/dev/wd0c of=/dev/null bs=1m & top load averages: 3.12, 2.50, 1.4916:54:08 37 processes: 36 idle, 1 o