> At 12:03 AM 3/8/00 -0800, George Greer wrote:
> >On Wed, 8 Mar 2000, Anil Mahajan wrote:
> >
> > >Mandrake's got a really annoying security 'feature' that is a living
> > >hell for us developers. It's not a PAMd issue like you'd figure but
> > >something tiny and undocumented.
> > > Anyway, to make a long story short (3 months of emails and posts).
> > >Here's how you get Mandrake Linux to dump a core file from a remote
> > >daemon (telnet/ssh session).
> >
> >RedHat does the same thing, but what does this have to do with CircleMUD?
> >
> >_Please_ do not tell me you are running the MUD as root...
> >
> >--
> >George Greer | CircleMUD Community Resources
> >greerga@circlemud.org | http://www.circlemud.net/
> >
>
> Neither of us are. But this is the basic problem:
>
> daemon is a function used in system startup scripts.
> inetd is started with a startup script that uses daemon.
> telnet is spawned by inetd.
> if daemon sets a max limit for core dumps to 0, this will affect telnet
> sessions.
>
> And as the startup script for SSH that I had used the daemon function call,
> the same applied to it.
>
> If the shell which is spawned by telnet or ssh has a max coredump limit of 0,
> so will the MUD.
>
> Make sense?
Hence my suggestion to put the ulimit in autorun.
+------------------------------------------------------------+
| Ensure that you have read the CircleMUD Mailing List FAQ: |
| http://qsilver.queensu.ca/~fletchra/Circle/list-faq.html |
+------------------------------------------------------------+
This archive was generated by hypermail 2b30 : 04/10/01 PDT