Incidents
Re: Weird SSH attack last night and this morning (still ongoing) May 16 2008 09:49PM
Valdis Kletnieks vt edu
On Fri, 16 May 2008 17:19:16 EDT, dxp said:

> Correction, one would only need to generate the amount of keys which
> would equal the size of maximum PID value on Linux based system
> (PID_MAX_DEFAULT). That equals to 32768 (2^15) on 32bit platform or
> more precisely on LP32 data model systems.

That would be very nice, except that many of us are on 64-bit platforms
and can set /proc/sys/kernel/pid_max much higher. include/linux/threads.h says:

/*
* This controls the default maximum pid allocated to a process
*/
#define PID_MAX_DEFAULT (CONFIG_BASE_SMALL ? 0x1000 : 0x8000)

/*
* A maximum of 4 million PIDs should be enough for a while.
* [NOTE: PID/TIDs are limited to 2^29 ~= 500+ million, see futex.h.]
*/
#define PID_MAX_LIMIT (CONFIG_BASE_SMALL ? PAGE_SIZE * 8 : (sizeof(long) > 4 ? 4 * 1024 * 1024 : PID_MAX_DEFAULT))

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001

iD8DBQFILgFTcC3lWbTT17ARAtCtAJ9P1pp82mX/wJABZCJcQb3J8wPX8ACg+4LY
l7NQ9XirO/BPH+QUzdq5Yfg=
=FXgt
-----END PGP SIGNATURE-----

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus