[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Ddos Prevention thru Throttleing

Subject: [cobalt-security] Ddos Prevention thru Throttleing
From: "Jamie - i-Dot" <jamie@xxxxxxxxx>
Date: Wed, 16 Oct 2002 13:09:20 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

In light of the recent DDOS / Buffer overflow exploits that have popped
up recently,  I have been thinking,


Couldn't we just do a system wide CPU% usage limit, on every user...

I have looked into /etc/security/limits.conf, as well as ulimit,  but it
seems these both work on a time spent, limit, as opposed to a %used
limit.

I want to say,  don't let any process by user,  httpd, collectively, or
singularly,  use more than 60% of the system cpu.

Ulimit is of no use as the user doesn't login,  and limits.conf,  only
seems to limit the amount of cpu time one process is allowed, as opposed
to doing what I require.

I would like to lock down a few users aswell, who run some perl scripts,
which have the 'potential' to be used to resource starve the box...  

Anyone got any thoughts / recommendations on how to effectively, not
allow user X to use more then Y% of the cpu, across all their processes?

Thanks

Jamie

Follow-Ups:
- Re: [cobalt-security] Ddos Prevention thru Throttleing
  - From: E.B. Dreger
- Re: [cobalt-security] Ddos Prevention thru Throttleing
  - From: Jaana Jarve

References:
- Re: [cobalt-security] solarspeed openssl package
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] solarspeed openssl package
Next by Date: Re: [cobalt-security] solarspeed openssl package
Previous by thread: Re: [cobalt-security] solarspeed openssl package
Next by thread: Re: [cobalt-security] Ddos Prevention thru Throttleing

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index