The resource limits module Synopsis

Module Name: Authors: Cristian Gafton <gafton@redhat.com> Thanks are also due to Elliot Lee <sopwith@redhat.com> for his comments on improving this module. Maintainer: Cristian Gafton - 1996/11/20 Management groups provided: session Cryptographically sensitive: Security rating: Clean code base: System dependencies: requires an /etc/security/limits.conf file and kernel support for resource limits. Also uses the library, Network aware: Overview of module

This module, through the Session component

Recognized arguments: conf=/path/to/file.conf Description: Through the contents of the configuration file, /etc/security/limits.conf, resource limits are placed on users' sessions. Users of The behavior of this module can be modified with the following arguments: conf=/path/to/file.conf - indicate an alternative Examples/suggested usage: In order to use this module the system administrator must first create a /etc/security/limits.conf). This file describes the resource limits the superuser wishes to impose on users and groups. No limits are imposed on Each line of the configuration file describes a limit for a user in the form:

The fields listed above should be filled as follows... <domain> can be: a username a groupname, with @group syntax the wild-card

<type> can have the two values:

<item> can be one of the following:

To completely disable limits for a user (or a group), a single dash (-) will do (Example: `` Also, please note that all limit settings are set In the The The following is an example configuration file: # EXAMPLE /etc/security/limits.conf file: # ======================================= # * soft core 0 * hard rss 10000 @student hard nproc 20 @faculty soft nproc 20 @faculty hard nproc 50 ftp hard nproc 0 @student - maxlogins 4 Note, the use of For the services that need resources limits (login for example) put a the following line in /etc/pam.conf as the last line for that service (usually after the pam_unix session line: # # Resource limits imposed on login sessions via pam_limits # login session required pam_limits.so