The resource limits module Synopsis

Module Name: Authors: Cristian Gafton <gafton@redhat.com> Thanks are also due to Elliot Lee <sopwith@redhat.com> for his comments on improving this module. Maintainer: Cristian Gafton - 1996/11/20 Management groups provided: session Cryptographically sensitive: Security rating: Clean code base: System dependencies: requires an /etc/security/limits.conf file and kernel support for resource limits. Also uses the library, Network aware: Overview of module

This module, through the Session component

Recognized arguments: conf=/path/to/file.conf; change_uid; utmp_early Description: Through the contents of the configuration file, /etc/security/limits.conf, resource limits are placed on users' sessions. Users of The behavior of this module can be modified with the following arguments: conf=/path/to/file.conf - indicate an alternative Examples/suggested usage: In order to use this module the system administrator must first create a /etc/security/limits.conf). This file describes the resource limits the superuser wishes to impose on users and groups. No limits are imposed on Each line of the configuration file describes a limit for a user in the form:

The fields listed above should be filled as follows... <domain> can be: a username a groupname, with @group syntax the wild-card the wild-card %group syntax

<type> can have the three values:

<item> can be one of the following:

Note, if you specify a type of ``-'' but neglect to supply the In general, individual limits have priority over group limits, so if you impose no limits for Also, please note that all limit settings are set In the The The following is an example configuration file: # EXAMPLE /etc/security/limits.conf file: # ======================================= # * soft core 0 * hard rss 10000 @student hard nproc 20 @faculty soft nproc 20 @faculty hard nproc 50 ftp hard nproc 0 @student - maxlogins 4 Note, the use of Note, that wild-cards %group is specified See the following examples: # EXAMPLE /etc/security/limits.conf file: # * - maxlogins 2 @faculty - maxlogins 4 % - maxlogins 30 %student - maxlogins 10 Explanation: every user can login 2 times, members of the For the services that need resources limits (login for example) put the following line in /etc/pam.conf as the last line for that service (usually after the pam_unix session line: # # Resource limits imposed on login sessions via pam_limits # login session required pam_limits.so