* Ethan Benson said: > > > >Also: I still don't know of any way to set the Virtual Mem usage of a > >shell without using ulimit (bash) or limit (csh)! Note that it does not > >appear to be an option in /etc/limits or in pam's limits.conf. Anyone > >know how to do it? There must be a way. > > ulimit does not really protect at all against someone malicious since > they are perfectly free to un-ulimit themselves, this is where > pam_limits is helpful, it enforces the hard limit and it cannot be > ulimited past that. Not only pam_limits is useful. You can use the capabilities of the shadow package to put the ULIMIT system value in the user's entry in the passwd/shadow database.
marek
pgpJDVkItpcDt.pgp
Description: PGP signature