This is the mail archive of the
mailing list for the glibc project.
Re: [PATCH 1/2] Set default stack size from program environment
- From: Roland McGrath <roland at hack dot frob dot com>
- To: fche at redhat dot com (Frank Ch. Eigler)
- Cc: Andreas Schwab <schwab at suse dot de>, Siddhesh Poyarekar <siddhesh at redhat dot com>, libc-alpha at sourceware dot org
- Date: Fri, 8 Mar 2013 13:53:30 -0800 (PST)
- Subject: Re: [PATCH 1/2] Set default stack size from program environment
- References: <20130115100110.GL7894@spoyarek.pnq.redhat.com><20130117000752.EFE8D2C0BC@topped-with-meat.com><20130117014821.GX7894@spoyarek.pnq.redhat.com><email@example.com><20130117082311.GB25252@spoyarek.pnq.redhat.com><firstname.lastname@example.org><20130117083500.GC25252@spoyarek.pnq.redhat.com><email@example.com><20130301210246.F2EB82C0B3@topped-with-meat.com><firstname.lastname@example.org>
> Roland McGrath <email@example.com> writes:
> > [...] Conversely, anything only changeable by privileged
> > administrator action rather than inherited from something casually
> > fungible like the environment is better for the issue of security
> > hardening.
> AIUI, this option is about courteously limiting memory consumption,
> not about security hardening (which hard ulimits could impose).
You misunderstand the issue. The issue of security hardening that I
referred to here is wholly unrelated to the intent of the feature.