Vulnerability Development mailing list archives
Re: Memory leak in Solaris 2.7 kernel?
From: Crist Clark <crist.clark () GLOBALSTAR COM>
Date: Fri, 16 Mar 2001 15:48:44 -0800
Wakko Ellington Warner-Warner III wrote:
# ls ../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../* Wait a few minutes, let the disks churn (it never stops!) Break out of it... # vmstat cannot fork: no swap space # w cannot fork: no swap space Have fun hard-resetting your Sun box...
The Moral of the Story: "Don't do stoo-oopid things as root." It's a simple resource starvation issue. The _shell_ process will keep eating memory as it tries to do the glob on the command line. Since root is not subject to resource limits, the shell will keep eating memory until you are out of swap, and apparently, if you needed to cold restart the box, your Solaris setup does not like to run out of swap. root can also fork bomb the box with one command line. root can fill up the hard drive with one command line. Don't do stupid things as root. As for any other user, if there are proper per-user resource limits in place, the user's shell will be killed before it can cause too much trouble. But don't do stupid things as root. One may hypothesize that there may be better ways to do a globbing algorithm so as not to cause this problem, but it is not a security issue. Doing stupid things as root is not a security issue. -- Crist J. Clark Network Security Engineer crist.clark () globalstar com Globalstar, L.P. (408) 933-4387 FAX: (408) 933-4926 The information contained in this e-mail message is confidential, intended only for the use of the individual or entity named above. If the reader of this e-mail is not the intended recipient, or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that any review, dissemination, distribution or copying of this communication is strictly prohibited. If you have received this e-mail in error, please contact postmaster () globalstar com
Current thread:
- Re: Segfault in login on debian potatoR2, (continued)
- Re: Segfault in login on debian potatoR2 Mike Fedyk (Mar 12)
- Re: Segfault in login on debian potatoR2 J. Kamer (Mar 10)
- Re: Segfault in login on debian potatoR2 Mike Fedyk (Mar 12)
- Re: Segfault in login on debian potatoR2 J. Kamer (Mar 13)
- Re: Segfault in login on debian potatoR2 Kevin van Haaren (Mar 13)
- Re: Segfault in login on debian potatoR2 Mike Fedyk (Mar 12)
- Re: Segfault in login on debian potatoR2 Charles Stevenson (Mar 10)
- Re: Segfault in login on debian potatoR2 poke (Mar 10)
- Re: Segfault in login on debian potatoR2 Emre Yildirim (Mar 10)
- Re: Segfault in login on debian potatoR2 Nickola Pepelishev (Mar 16)
- Memory leak in Solaris 2.7 kernel? Wakko Ellington Warner-Warner III (Mar 16)
- Re: Memory leak in Solaris 2.7 kernel? Crist Clark (Mar 16)
- Re: Memory leak in Solaris 2.7 kernel? Jason Storm (Mar 16)
- Re: Memory leak in Solaris 2.7 kernel? Thomas J. Arseneault (Mar 17)
- Re: Memory leak in Solaris 2.7 kernel? visi0n (Mar 17)
- Re: Memory leak in Solaris 2.7 kernel? Marek Markowicz (markomar) (Mar 17)
- Memory leak in Solaris 2.7 kernel? Wakko Ellington Warner-Warner III (Mar 16)
- Re: Memory leak in Solaris 2.7 kernel? Emre Yildirim (Mar 17)
- Re: Memory leak in Solaris 2.7 kernel? Doc Savage (Mar 18)
- Re: Memory leak in Solaris 2.7 kernel? Blue Boar (Mar 18)
- Re: Segfault in login on debian potatoR2 Vitaly McLain (Mar 10)