Date: Sat, 9 Sep 2000 18:12:53 +0200 From: Lukasz Trabinski <lukasz@LT.WSISIZ.EDU.PL> Subject: Re: tmpwatch: local DoS : fork()bomb as root To: BUGTRAQ@SECURITYFOCUS.COM On Sat, 9 Sep 2000, zenith parsec wrote: > > Make a directory 6000 deep in /tmp [...] > slocate also segfaults on that directory. > > $ ./a > to delete all the ./A/A/A/A/..... directories you own. Generally, you can set quota limit for inode-softlimit and inode-hardlimit (you should set it for /tmp filesystem, when you have users on your machine). For example: inodes in use: 1, limits (soft =512 , hard = 1024), Then user can not create more than 1024 files or directories, Of course you can set more restrictive limits. :-) -- *[ Łukasz Tr±biński ]* SysAdmin @wsisiz.edu.pl