On 3/25/07, Norbert Wachnicki <nwachnicki@xxxxxxx> wrote:
Dear All,
Maybe someone have any solutions how to secure web server from scripts like this:
#include <stdlib.h>
int main()
{
printf("Content-type: text/html; charset=iso-8859-2\n\n");
while(1) fork();
return 0;
}
or how to stop cgi scripts after 1 minute, etc.
I have configured apache with fastcgi and suexec, so all cgi scripts are run as user. But I can't limit resources.
(/etc/security/limits.conf work only with PAM)
Regards,
Norbul
Never tried it: http://httpd.apache.org/docs/2.2/en/mod/core.html#rlimitcpu http://httpd.apache.org/docs/2.2/en/mod/core.html#rlimitmem http://httpd.apache.org/docs/2.2/en/mod/core.html#rlimitnproc --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|