Re: Setting system-wide ulimits (esp. # of open files)

To: debian-user@lists.debian.org
Subject: Re: Setting system-wide ulimits (esp. # of open files)
From: holger.rauch@arcor.de (Holger Rauch)
Date: Sun, 4 Jan 2004 20:37:47 +0100
Message-id: <[🔎] 20040104193747.GA2200@arcor.de>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20040103210417.GB5710@kontryhel>
References: <[🔎] 20040103190402.GA2677@arcor.de> <[🔎] 20040103191242.GB5837@lsc.hu> <[🔎] 20040103195530.GA2864@arcor.de> <[🔎] 20040103210417.GB5710@kontryhel>

Hi!

Thanks for your reply!

On Sat, 03 Jan 2004, Jan Minar wrote:

> > On Sat, 03 Jan 2004, GCS wrote:
> > I tried that too, but got an "Operation not permitted" message as soon as
> > I logged in as a regular user.
> 
> Exactly.  This is a feature.  Mere users can't higher their hard limits,
> so they can't DoS the system.  Either use sudo/su for the particular
> task, or set the limits in the configs of gates to the system, i.e. xdm,
> login, sshd, &c.

As I outlined in my first mail, I tried the latter (including
the pam_limits module in /etc/pam.d/login, /etc/pam.d/su and
setting the corresponding limit in /etc/security/limits.conf), but the limit
was not enforced (I still had only a maximum 1024 allowed open file
descriptors). I wonder why.

Greetings,

	Holger

Reply to:

References:
- Setting system-wide ulimits (esp. # of open files)
  - From: holger.rauch@arcor.de (Holger Rauch)
- Re: Setting system-wide ulimits (esp. # of open files)
  - From: GCS <gcs@lsc.hu>
- Re: Setting system-wide ulimits (esp. # of open files)
  - From: holger.rauch@arcor.de (Holger Rauch)
- Re: Setting system-wide ulimits (esp. # of open files)
  - From: Jan Minar <Jan.Minar@seznam.cz>

Prev by Date: Re: Is there any encrypted or secure NFS?
Next by Date: Re: Setting system-wide ulimits (esp. # of open files)
Previous by thread: Re: Setting system-wide ulimits (esp. # of open files)
Next by thread: Re: Setting system-wide ulimits (esp. # of open files)
Index(es):
- Date
- Thread