LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 07-24-2005, 08:20 AM   #1
Mig21
Member
 
Registered: Jan 2005
Posts: 193

Rep: Reputation: 33
ram, cpu and process quotas


hello

i've decided to learn to secure a linux box so i'm making a list of things to do.

it's really easy to bring a system down to a crawl by using up all the ram or processor. can i limit those? i guess the processor is not as important since it's shared equally among all users but still...

also, to prevent a forkbomb i would like to limit the number of processes a user may run.

i looked at the man page for limits and found something awfull in there :
Quote:
Also, please note that all limit settings are set PER LOGIN. They are not global, nor
are they permanent. Perhaps global limits will come, but for now this will have to do
i don't think that's funny.

is there a way to limit the number of logins? ssh or telnet?

thank you
 
Old 07-25-2005, 12:49 AM   #2
Matir
Moderator
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Ubuntu
Posts: 8,507

Rep: Reputation: 117Reputation: 117
Try /etc/security/limits.conf which is used by pam_limits.
 
Old 07-25-2005, 03:03 AM   #3
Mig21
Member
 
Registered: Jan 2005
Posts: 193

Original Poster
Rep: Reputation: 33
thanks for the suggestion. apparently slackware doesn't have pam.

i was thinking of that though. what does authentication have to do with quotas?

is it reasonable to try and install it myself?
 
Old 07-25-2005, 03:12 AM   #4
primo
Member
 
Registered: Jun 2005
Posts: 542

Rep: Reputation: 34
There are some runtime configuration parameters (a.k.a. sysctl's) in /proc/sys/*/*
Check their descriptions at:
/usr/src/linux/Documentation/sysctl/*
/usr/src/linux/Documentation/networking/ip-sysctl.txt

Unfortunately, these files haven't been updated...

Quote:
Also, please note that all limit settings are set PER LOGIN. They are not global, nor
are they permanent. Perhaps global limits will come, ...
They will probably use sysctl's

Quote:
is there a way to limit the number of logins? ssh or telnet?
There are many ways... See sshd_config(5)
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
process to use more than 2GB RAM simplyrahul Linux - General 12 10-27-2004 08:17 PM
New mobo, cpu, ram joker20 Slackware 4 09-18-2004 06:41 AM
2 CPU and 8G ram BRAHmS Linux - Newbie 2 05-07-2004 10:11 PM
CPU/RAM Problem sakkie Linux - General 4 03-11-2002 11:46 AM
cpu ram os info drbaca1 Linux - General 0 09-03-2001 02:31 PM


All times are GMT -5. The time now is 12:59 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration