Forums
Forums

Quick Links
- Search Forums
- New Posts
Search titles only

Posted by Member:

Separate names with a comma.

Newer Than:

Search this thread only

Search this forum only

Display results as threads

More...

Useful Searches

Recent Posts
Resources
Resources

Quick Links
Feature Requests
Defects
Menu

This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Shell Fork Bomb Protection - Exceptions?

Discussion in 'General Discussion' started by Monotoko, Mar 23, 2011.

Monotoko Member

Joined:

Mar 1, 2011

Messages:

10

Likes Received:

0

Trophy Points:

51

Hi Guys,

I have a user that runs a Minecraft server. This is a java file that has quite a high memory requirement, and when "Shell Fork Bomb Protection" is switched on it will not let me run the file under the user.

I would like the protection on for all accounts except the "minecraft" user, is this possible?

Daniel

#1 Monotoko, Mar 23, 2011
MattLee BANNED

Joined:

Aug 26, 2009

Messages:

83

Likes Received:

0

Trophy Points:

56
Hello,

Unfortunately, this option is only a global setting and our interface doesn't allow any exceptions to the rule once enabled.
cPResources:

Support Options - Extra Support Options - Documentation - Mailing Lists - Latest cPanel Builds

cPanel.net Site Search - Documentation Search - Forums Search - Forums Advanced Search

-- cPanelMattL - Matthew Lee, Technical Analyst, cPanel Technical Support
#2 MattLee, Mar 24, 2011
cPanelTristan Quality Assurance Analyst
Staff Member

Joined:

Oct 2, 2010

Messages:

7,622

Likes Received:

25

Trophy Points:

238

Location:

somewhere over the rainbow

cPanel Access Level:

Root Administrator

While this cannot be done via the interface, it may be possible to revise using the limits set into /etc/profile location, which are the entries added by Shell Fork Bomb Protection:

#cPanel Added Limit Protections -- BEGIN

#unlimit so we can run the whoami
ulimit -n 4096 -u 14335 -m unlimited -d unlimited -s 8192 -c 1000000 -v unlimited 2>/dev/null

LIMITUSER=$USER
if [ -e "/usr/bin/whoami" ]; then
LIMITUSER=`/usr/bin/whoami`
fi
if [ "$LIMITUSER" != "root" ]; then
ulimit -n 100 -u 20 -m 200000 -d 200000 -s 8192 -c 200000 -v 200000 2>/dev/null
else
ulimit -n 4096 -u 14335 -m unlimited -d unlimited -s 8192 -c 1000000 -v unlimited 2>/dev/null
fi
#cPanel Added Limit Protections -- END
Click to expand...

You could revise to add another user in the section where it has the if-else clauses to set the root and non-root user ulimits. You might also want to set the user's settings in /etc/security/limits.conf file.

cPResources: Support Options | More Support Options | Forums Search | cPanel.net Site Search | Mailing Lists(Alt) | Docs
-- Tristan, Technical Analyst III, Forums Specialist, cPanel Tech Support

Submit a ticket | Check an existing ticket

#3 cPanelTristan, Mar 24, 2011

(You must log in or sign up to post here.)

Loading...

Similar Threads - Shell Fork Bomb

JailShell Question

inetbizo, Aug 17, 2017 at 6:51 PM, in forum: General Discussion

Replies:

1

Views:

8

cPanelMichael

Aug 18, 2017 at 12:56 PM
Allow 'who' in jailed shell

_jman, Aug 11, 2017, in forum: General Discussion

Replies:

1

Views:

46

cPanelMichael

Aug 11, 2017
SOLVED mysqldump fails for non-root shell user

sidgrafix, Aug 1, 2017, in forum: Database Discussions

Replies:

5

Views:

79

cPanelMichael

Aug 1, 2017
Is it possible to whitelist command/programs to be used by shell_exec?

VMunich, Jul 3, 2017, in forum: Security

Replies:

4

Views:

115

quizknows

Jul 4, 2017
WHMCS cron job not working error - jailshell/5: command not found

andysag, Jul 1, 2017, in forum: General Discussion

Replies:

4

Views:

128

rpvw

Jul 1, 2017

Share This Page