Subject: Re: Fork bomb protection patch
To: NetBSD Kernel Technical Discussion List <tech-kern@NetBSD.ORG>
From: Phil Nelson <>
List: tech-kern
Date: 12/04/2002 19:18:31
 On Wednesday, December 4, 2002 at 10:07:35 (+0100), Jaromir Dolecek wrot=

> Subject: Fork bomb protection patch
> * make process sleep for 0.5s if the system table is full
>   or when the user reaches their process number limit
>   - this is to not hog the system with huge number of CPU-hungry
>     looping processes

How about having this .5s sleep kick in only after a user has had=20
a number of unsuccessful forks without a successful one.  This would stil=
stop the fork bomb, but let non-bombs that run at the process limit conti=
without the .5s sleep.