Re: [Jailkit-users] Prevent Fork Bombs on Jailed Python Interpreter

[Olivier Sessink]

Gregory Piñero wrote:
> On 10/25/07, Gregory Piñero <address@hidden> wrote:
>> I have a script run by root that launches six of these:
>> jk_chrootlaunch -u jailtest -g jailtest -j /srv/jail_for_python/ -x
>> /srv/jail_for_python/usr/bin/python2.4 exec_worker.py
>>
>> So I tried adding this to limits.conf:
>> jailtest        hard    nproc   1
>>
>> But I'm still allowed to start the 6 processes.
>>
> 
> Ok, here's the latest.  I think limits.conf only works for logged in
> users, not for my special jail user.

I might be 100% wrong here: but it might be that 'bash' is the program
that actually sets the limits. So if you use another shell (jk_chrootsh)
the limits are not set. That could at least explain the behavior found.
But how do we find out which program sets the limits?

regards,
        Olivier