Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Include Page
_Version
_Version

(Home >> Security Center >> Shell Fork Bomb Protection)

Table of Contents
stylenone

Overview

Fork bombs start a cascade of small processes on a server that duplicate themselves until the server’s resources are depleted.

This feature helps you protect your server from users with terminal access (SSH or Telnet) who may inadvertently or intentionally cause a fork bomb.

How to configure shell fork bomb protection

To enable or disable shell fork bomb protection, click Enable Protection or Disable Protection.

After you enable shell fork bomb protection, the system imposes the following limits on users in order to protect the server:

LimitOptionDescription
200000-cLimits the maximum size of core files that users can create.
200000-dLimits the maximum size of a process's data segment.
200000-mLimits the maximum resident set size.
100-nLimits the maximum number of open-file descriptors.
8192-sLimits the maximum stack size.
35-u

Limits the maximum number of processes that are available to a single user.

Note
titleNote:

This option limits cPanel users with bash shell access, which is the default shell for cPanel users, to 35 processes each.

Unlimited-vThe amount of virtual memory available for the processes.

Additional documentation

Localtab Group
Localtab
activetrue
titleSuggested documentation

Content by Label
showLabelsfalse
max5
showSpacefalse
cqllabel in ("security","ssh") and space = currentSpace()

Localtab
titleFor cPanel users

Content by Label
showLabelsfalse
max5
showSpacefalse
cqllabel in ("security","ssh") and label = "cpanel" and space = currentSpace()

Localtab
titleFor WHM users

Content by Label
showLabelsfalse
max5
showSpacefalse
cqllabel in ("security","ssh") and label = "whm" and space = currentSpace()

Localtab
titleFor developers

Content by Label
showLabelsfalse
max5
showSpacefalse
cqllabel in ("security","ssh") and space = "SDK"