max connections per control group (cgroup)
Alban Crequy
alban.crequy at collabora.co.uk
Fri Aug 8 06:16:38 PDT 2014
On Wed, 6 Aug 2014 08:49:28 -0700
Jon Watte <jwatte at gmail.com> wrote:
> A limit of connections per process sounds much better than a limit of
> connections per cgroup to me. Some users build or use complex systems
> with many dozens of collaborating programs, or just have a busy
> desktop. If the session or cgroup limit is arbitrarily low, like 16,
> that will get in the way of such uses pretty quickly. However, as
> each collaborating part is a process, a quite low per-process per-bus
> connection could would be more reasonable to this thinking.
Hello,
I implemented max_connections_per_process, reviews welcome:
https://bugs.freedesktop.org/show_bug.cgi?id=82346
Cheers,
Alban
> Note that DoS-es from a malicious process on the machine aren't really
> feasible, if we want to assume that a user is allowed to use all the
> machine resources for legitimate purposes.
>
> Sincerely,
>
> jw
>
>
>
>
>
>
> Sincerely,
>
> Jon Watte
>
>
> --
> "I find that the harder I work, the more luck I seem to have." --
> Thomas Jefferson
>
>
> On Wed, Aug 6, 2014 at 7:22 AM, Thiago Macieira <thiago at kde.org>
> wrote:
>
> > On Wednesday 06 August 2014 15:16:27 Alban Crequy wrote:
> > > Similarly, do you think a limit of connections per process would
> > > be good?
> >
> > Yes!
> >
> > --
> > Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
> > Software Architect - Intel Open Source Technology Center
> > PGP/GPG: 0x6EF45358; fingerprint:
> > E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
> >
> > _______________________________________________
> > dbus mailing list
> > dbus at lists.freedesktop.org
> > http://lists.freedesktop.org/mailman/listinfo/dbus
> >
More information about the dbus
mailing list