Re: Setting system-wide ulimits (esp. # of open files)
Hi!
Thanks for your reply!
On Sat, 03 Jan 2004, Jan Minar wrote:
> > On Sat, 03 Jan 2004, GCS wrote:
> > I tried that too, but got an "Operation not permitted" message as soon as
> > I logged in as a regular user.
>
> Exactly. This is a feature. Mere users can't higher their hard limits,
> so they can't DoS the system. Either use sudo/su for the particular
> task, or set the limits in the configs of gates to the system, i.e. xdm,
> login, sshd, &c.
As I outlined in my first mail, I tried the latter (including
the pam_limits module in /etc/pam.d/login, /etc/pam.d/su and
setting the corresponding limit in /etc/security/limits.conf), but the limit
was not enforced (I still had only a maximum 1024 allowed open file
descriptors). I wonder why.
Greetings,
Holger
Reply to: