LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page ram, cpu and process quotas
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 07-24-2005, 08:20 AM   #1
Mig21
Member
 
Registered: Jan 2005
Posts: 176

Rep: Reputation: 30
ram, cpu and process quotas

hello

i've decided to learn to secure a linux box so i'm making a list of things to do.

it's really easy to bring a system down to a crawl by using up all the ram or processor. can i limit those? i guess the processor is not as important since it's shared equally among all users but still...

also, to prevent a forkbomb i would like to limit the number of processes a user may run.

i looked at the man page for limits and found something awfull in there :
Quote:
Also, please note that all limit settings are set PER LOGIN. They are not global, nor
are they permanent. Perhaps global limits will come, but for now this will have to do
i don't think that's funny.

is there a way to limit the number of logins? ssh or telnet?

thank you
 
Old 07-25-2005, 12:49 AM   #2
Matir
Moderator
 
Registered: Nov 2004
Location: Kennesaw, GA
Distribution: Ubuntu
Posts: 8,502

Rep: Reputation: 110Reputation: 110
Try /etc/security/limits.conf which is used by pam_limits.
 
Old 07-25-2005, 03:03 AM   #3
Mig21
Member
 
Registered: Jan 2005
Posts: 176

Original Poster
Rep: Reputation: 30
thanks for the suggestion. apparently slackware doesn't have pam.

i was thinking of that though. what does authentication have to do with quotas?

is it reasonable to try and install it myself?
 
Old 07-25-2005, 03:12 AM   #4
primo
Member
 
Registered: Jun 2005
Posts: 542

Rep: Reputation: 33
There are some runtime configuration parameters (a.k.a. sysctl's) in /proc/sys/*/*
Check their descriptions at:
/usr/src/linux/Documentation/sysctl/*
/usr/src/linux/Documentation/networking/ip-sysctl.txt

Unfortunately, these files haven't been updated...

Quote:
Also, please note that all limit settings are set PER LOGIN. They are not global, nor
are they permanent. Perhaps global limits will come, ...
They will probably use sysctl's

Quote:
is there a way to limit the number of logins? ssh or telnet?
There are many ways... See sshd_config(5)
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
process to use more than 2GB RAM simplyrahul Linux - General 12 10-27-2004 08:17 PM
New mobo, cpu, ram joker20 Slackware 4 09-18-2004 06:41 AM
2 CPU and 8G ram BRAHmS Linux - Newbie 2 05-07-2004 10:11 PM
CPU/RAM Problem sakkie Linux - General 4 03-11-2002 11:46 AM
cpu ram os info drbaca1 Linux - General 0 09-03-2001 02:31 PM


All times are GMT -5. The time now is 11:17 AM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
 
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration