Brandon Darbro wrote:
Been having a hell of a time trying to get users ulimit commands to work
on SLES 9. Ulimit kept reporting values were out of range, not matter
what I placed as hard and soft limits in /etc/security/limits.conf.
Finally figured out the problem. In /etc/pam.d, only services "login"
and "sshd" were configured to include the line:
session required pam_limits.so
As our Oracle DBA's must first login as themselves and then "su -
oracle" to get into the oracle account, their large ulimit values in
Wouldn't sudo be preferable? You authorise joe, susan and anitta as
DBAs, and they use their own passwords to access oracle.
I don't like the idea of shared use of a password.
their .profile were getting the out of range errors. Well, it's because
that pam line above wasn't in the "su" pam file. This drove me crazy
for a couple hours today until I figured that out. Thought I'd pass
that info along, as well as ask the question:
Shouldn't that pam config line above be included in *all* login
services, such as login, rexec, rlogin, rsh, sshd, su, and sudo?
If you folks agree that should be included in the pam configuration for
those services, I'll file a bug report with SuSE.
I'm looking at a RH system:
[EMAIL PROTECTED] ~]$ sudo grep limits /etc/pam.d/*
/etc/pam.d/crond:# Sets up user limits, please uncomment and read
/etc/security/limits.conf
/etc/pam.d/crond:# session required pam_limits.so
/etc/pam.d/system-auth:session required
/lib/security/$ISA/pam_limits.so
[EMAIL PROTECTED] ~]$
The system-auth entry is referred to in others:
[EMAIL PROTECTED] ~]$ sudo grep -l system-auth /etc/pam.d/* | wc -l
94
[EMAIL PROTECTED] ~]$
--
Cheers
John
-- spambait
[EMAIL PROTECTED] [EMAIL PROTECTED]
Tourist pics http://portgeographe.environmentaldisasters.cds.merseine.nu/
----------------------------------------------------------------------
For LINUX-390 subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
