Forums
Forums

Quick Links
- Search Forums
- New Posts
Search titles only

Posted by Member:

Separate names with a comma.

Newer Than:

Search this thread only

Search this forum only

Display results as threads

More...

Useful Searches

Recent Posts
Resources
Resources

Quick Links
Feature Requests
Defects
Menu

This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Shell Fork Bomb Protection - Exceptions?

Discussion in 'General Discussion' started by Monotoko, Mar 23, 2011.

Monotoko Member

Joined:

Mar 1, 2011

Messages:

10

Likes Received:

0

Trophy Points:

51

Hi Guys,

I have a user that runs a Minecraft server. This is a java file that has quite a high memory requirement, and when "Shell Fork Bomb Protection" is switched on it will not let me run the file under the user.

I would like the protection on for all accounts except the "minecraft" user, is this possible?

Daniel

#1 Monotoko, Mar 23, 2011
MattLee BANNED

Joined:

Aug 26, 2009

Messages:

83

Likes Received:

0

Trophy Points:

56
Hello,

Unfortunately, this option is only a global setting and our interface doesn't allow any exceptions to the rule once enabled.
cPResources:

Support Options - Extra Support Options - Documentation - Mailing Lists - Latest cPanel Builds

cPanel.net Site Search - Documentation Search - Forums Search - Forums Advanced Search

-- cPanelMattL - Matthew Lee, Technical Analyst, cPanel Technical Support
#2 MattLee, Mar 24, 2011
cPanelTristan Quality Assurance Analyst
Staff Member

Joined:

Oct 2, 2010

Messages:

7,622

Likes Received:

24

Trophy Points:

238

Location:

somewhere over the rainbow

cPanel Access Level:

Root Administrator

While this cannot be done via the interface, it may be possible to revise using the limits set into /etc/profile location, which are the entries added by Shell Fork Bomb Protection:

#cPanel Added Limit Protections -- BEGIN

#unlimit so we can run the whoami
ulimit -n 4096 -u 14335 -m unlimited -d unlimited -s 8192 -c 1000000 -v unlimited 2>/dev/null

LIMITUSER=$USER
if [ -e "/usr/bin/whoami" ]; then
LIMITUSER=`/usr/bin/whoami`
fi
if [ "$LIMITUSER" != "root" ]; then
ulimit -n 100 -u 20 -m 200000 -d 200000 -s 8192 -c 200000 -v 200000 2>/dev/null
else
ulimit -n 4096 -u 14335 -m unlimited -d unlimited -s 8192 -c 1000000 -v unlimited 2>/dev/null
fi
#cPanel Added Limit Protections -- END
Click to expand...

You could revise to add another user in the section where it has the if-else clauses to set the root and non-root user ulimits. You might also want to set the user's settings in /etc/security/limits.conf file.

cPResources: Support Options | More Support Options | Forums Search | cPanel.net Site Search | Mailing Lists(Alt) | Docs
-- Tristan, Technical Analyst III, Forums Specialist, cPanel Tech Support

Submit a ticket | Check an existing ticket

#3 cPanelTristan, Mar 24, 2011

(You must log in or sign up to post here.)

Loading...

Similar Threads - Shell Fork Bomb

Jailshell Problems

dansparks127, Jun 6, 2017, in forum: Security

Replies:

3

Views:

75

cPanelMichael

Jun 7, 2017
Whats this line from shell messages?

000, May 22, 2017, in forum: General Discussion

Replies:

1

Views:

73

cPanelMichael

May 23, 2017
How to reset certificate or change hostname from shell

speckados, May 9, 2017, in forum: Security

Replies:

2

Views:

148

speckados

May 13, 2017
cPanel jailshell being abused and causing downtime

Mugoma, Apr 24, 2017, in forum: Security

Replies:

5

Views:

221

Mugoma

Apr 25, 2017
LXC Containers give error jailshell: /dev/null: Permission denied

alsemany, Apr 15, 2017, in forum: Workarounds and Optimization

Replies:

5

Views:

283

cPanelMichael

May 1, 2017

Share This Page