I'm sure many people have read this by now: http://www.securityfocus.com/columnists/308 Many people probably already know about it and how you need to set limits. Is there something that can be done with selinux or a kernel module to stop it with out the user or admin to have to know they should set something? I ran this on a rawhide box as my user and it killed the box: http://home.tiscali.cz:8080/~cz210552/forkbomb.html I was wondering if something like this should be implemented at the kernel level: http://rexgrep.tripod.com/rexfbd.htm Or if there is something similiar already in the kernel? thx,
