This is the mail archive of the
libc-alpha@sourceware.org
mailing list for the glibc project.
Re: [PATCH 1/2] Set default stack size from program environment
- From: Roland McGrath <roland at hack dot frob dot com>
- To: fche at redhat dot com (Frank Ch. Eigler)
- Cc: Andreas Schwab <schwab at suse dot de>, Siddhesh Poyarekar <siddhesh at redhat dot com>, libc-alpha at sourceware dot org
- Date: Fri, 8 Mar 2013 13:53:30 -0800 (PST)
- Subject: Re: [PATCH 1/2] Set default stack size from program environment
- References: <20130115100110.GL7894@spoyarek.pnq.redhat.com><20130117000752.EFE8D2C0BC@topped-with-meat.com><20130117014821.GX7894@spoyarek.pnq.redhat.com><mvm1udk5iul.fsf@hawking.suse.de><20130117082311.GB25252@spoyarek.pnq.redhat.com><mvmwqvc43jy.fsf@hawking.suse.de><20130117083500.GC25252@spoyarek.pnq.redhat.com><mvm4nig2o6p.fsf@hawking.suse.de><20130301210246.F2EB82C0B3@topped-with-meat.com><y0mwqtl29zw.fsf@fche.csb>
> Roland McGrath <roland@hack.frob.com> writes:
>
> > [...] Conversely, anything only changeable by privileged
> > administrator action rather than inherited from something casually
> > fungible like the environment is better for the issue of security
> > hardening.
>
> AIUI, this option is about courteously limiting memory consumption,
> not about security hardening (which hard ulimits could impose).
You misunderstand the issue. The issue of security hardening that I
referred to here is wholly unrelated to the intent of the feature.