Idle timeout - user education or forced?
Hello all. First, the environment:
6 login nodes (blades) running CentOS 5 (no choice)
These login nodes are automatically load balanced so users may not necessarily get the same blade the next time they login. I, like my co-worker, adopted this dysfunctional kid and we're left to pick up the pieces from the last sysadmin (I use that term loosely). They run X and users use them as a jumping off point to other dev nodes within the environment that are also blades running newer hardware and OS versions.
From time to time, our users will kickoff NX, Firefox, nedit and other X-affiliated programs, then leave and, from what I gather, completely forget about their sessions. They like the fact that NX remembers their session so they can come back to it later, but the byproduct is that our login nodes suffer from CPU & memory usage and, at times (once every few weeks), we're forced to reboot a particular blade as it locked up.
I'm aware of /etc/security/limits.conf and the /etc/profile.d/<config> for timeout system-wide. Each user has their own shell preference, e.g. /bin/bash, /bin/ksh, /bin/tcsh, etc. and I'm aware of the fact that I can set timeouts per user using that shell's syntax as a dot file.
It seems that users are abusing the ability to use X-related programs without giving much thought to repercussions from leaving them open. We'll do a w and find that some have been logged in for more than a month.
For you sysadmins out there that might be facing a similar situation, how are you handling this and what would you recommend? I'm tempted to hold a meeting with them, at first, to try and dissuade abuse of the environment by educating them, but I feel like it will most likely go in one ear and out the other and will eventually be forced to exercise more intrusive means to keep resource usage to a reasonable level anyway.
|