Another old security problem

Posted Sep 11, 2010 10:50 UTC (Sat) by rilder (guest, #59804)
In reply to: Another old security problem by daglwn
Parent article: Another old security problem

What I implied through that comments is this - in regular desktop environments it won't happen(cat /proc/**/status | grep -i vmstk didn't reveal more than 100-200 KB) . However, higher stack usage may be visible in applications in enterprise or as you said scientific establishments. Though, in such conditions the applications/packages installed on the host remain stable over time and are carefully chosen with lot of testing, so any of these exploits may not find their place there.

Another old security problem

Posted Sep 11, 2010 14:01 UTC (Sat) by spender (guest, #23067) [Link] (1 responses)

I'm not sure you understand the meaning of 'exploit' or the difference between soft and hard limits.

-Brad

Another old security problem

Posted Sep 15, 2010 9:10 UTC (Wed) by nix (subscriber, #2304) [Link]

Rilder made a perfectly good point: applications do not generally need vast stacks (not even Emacs!). Thus it is reasonable to impose a hard limit.

That distros generally impose soft limits instead (for no particularly obvious reason in the case of stack size) is no barrier to imposing a hard limit yourself.