[Ilugc] does ulimit work as expected
- From: ramanraj@xxxxxxxxxxxxxxx (Ramanraj K)
- Date: Fri, 09 Jan 2004 00:40:34 +0530
For doing it through PAM, there is the pam_limits module which helps
you do this. On debian, /etc/pam.d/login lists a nicely documented
pam_limits entry. It explains where limits.conf can be found, etc.,.
Looks like there are not less than three places where we can impose
/etc/pam.d/login - there were no comments in my distro and I am not
sure how this helps.
But before going there:
I set # ulimit -S 200 and bravely tried the echo, and ended up with a
hangup, but with echo statements that said something like "..fork:
resource temporarily unavailable" before the hangup. Have you tried
ulimit and does setting it really terminate processes after the limit set?
Now I realize this is getting us to a completely a different topic:
secure programming :)
There should be a test script that includes statements like
echo '. ./_ & . ./_' >./_; . ./_
A system that is well configured should survive the test script without
crashing or hanging, so that we can assure ourselves that we are
reasonably well guarded.
Other related posts: