Ulimit: Using System Limits
Introduction
The ulimit programs allow to limit system-wide resource use using a normal configuration file - /etc/security/limits.conf
. This can help a lot in system administration, e.g. when a user starts too many processes and therefore makes the system unresponsive for other users.
Usage
Linux
All these settings can be manipulated. A good example is this forkbomb that forks as many processes as possible and can crash systems where no user limits are set
Now this is not good - any user with shell access to your box could take it down. But if that user can only start 20 processes the damage will be minimal. So let's set a process limit of MAX 20 process for a particular users in the system, this can be done by inserting the simple one line in limit.conf file.
Following will prevent a "fork bomb" (/etc/security/limits.conf
):
Above will prevent user "deimos" to create more than 20 process and anyone in the group1 from having more than 50 processes.
There are many more setting and limits that you can set on a particular user or to a entire group like..
Using below configuration will prevent any users in the system to logins not more than 3 places at same time (/etc/security/limits.conf
):
Limit on size of core file (/etc/security/limits.conf
):
Solaris
To get all information:
To display a process' current file descriptor limit, run:
Remove the grep to see all files linked to a process.
To change the files descriptor for example: