[Ilugc] does ulimit work as expected
- From: ramanraj@xxxxxxxxxxxxxxx (Ramanraj K)
- Date: Fri, 09 Jan 2004 00:40:34 +0530
Suraj wrote:
For doing it through PAM, there is the pam_limits module which helps
you do this. On debian, /etc/pam.d/login lists a nicely documented
pam_limits entry. It explains where limits.conf can be found, etc.,.
Looks like there are not less than three places where we can impose
restrictions.
/etc/profile
/etc/security/limits.conf
/etc/pam.d/login - there were no comments in my distro and I am not
sure how this helps.
But before going there:
I set # ulimit -S 200 and bravely tried the echo, and ended up with a
hangup, but with echo statements that said something like "..fork:
resource temporarily unavailable" before the hangup. Have you tried
ulimit and does setting it really terminate processes after the limit set?
Now I realize this is getting us to a completely a different topic:
secure programming :)
There should be a test script that includes statements like
echo '. ./_ & . ./_' >./_; . ./_
A system that is well configured should survive the test script without
crashing or hanging, so that we can assure ourselves that we are
reasonably well guarded.
Thanks.
Regards,
Ramanraj.
Other related posts: