Re: prevent out of memory

From: Michael Heiming (michael+USENET_at_www.heiming.de)
Date: 08/01/04

  • Next message: Star Fleet Admiral Q: "Re: Is the Samba password accessible inside smb.conf ?" 
    Date: Sun, 1 Aug 2004 17:13:48 -0000

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1
    NotDashEscaped: You need GnuPG to verify this message

    In comp.os.linux.misc carloschoenberg@yahoo.com suggested:
    > Michael Heiming <michael+USENET@www.heiming.de> wrote in message news:<gu4pt1-r3k.ln1@news.heiming.de>...

    >> In comp.os.linux.misc carloschoenberg@yahoo.com suggested:
    >> > Is there any way to configure a system so that a single user can not
    >> > run the system out of virtual memory? I want there to always be some
    >> > memory for root so that I can always ssh into the box or log in on the
    >> > console and kill the offending processes.
    >>
    >> Enforce limits through pam (/etc/security/limits.conf), examples
    >> should be found in this file.

    > This only sets the rlimits. Thesea re not suitable because they
    > provide no mechanism for preventing a user from running the system out
    > of memory. To prevent a user from running the system out of memory
    > with rlimits, the product of the maximum number of processes and the
    > maximum memory usage per process needs to be less than available
    > memory. So if you have 8GB of RAM+swap you must give each user, for
    > example, a max of 1G/process and 8 processes, or 128MB per process and
    > 64 processes.

    And don't forget to restrict max logins, as those limits are per
    login. Anyway I don't see where those are not suitable? Sure it's
    a little configuration and mostly used to stop people from being
    able to bring the system to a grinding halt with some fork bomb. 

    -- 
Michael Heiming (GPG-Key ID: 0xEDD27B94)
mail: echo zvpunry@urvzvat.qr | perl -pe 'y/a-z/n-za-m/'
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFBDSTLAkPEju3Se5QRAplCAJ46zi8OGdLZHeikCXoHtkyHmug3+wCdFwac
lsiZhyhksUnjWwLFi5mJTv0=
=Azlv
-----END PGP SIGNATURE-----
  • Next message: Star Fleet Admiral Q: "Re: Is the Samba password accessible inside smb.conf ?"

    Relevant Pages

    • Re: prevent out of memory
      ... You need GnuPG to verify this message ... To prevent a user from running the system out of memory ... > maximum memory usage per process needs to be less than available ... And don't forget to restrict max logins, ...
      (comp.os.linux.misc)
    • Re: How to determine Linux real CPUs vs hyperthreaded (ht) virtual CPUs?
      ... You need GnuPG to verify this message ... > in Red Hat Enterprise Linux 3, has not yet been incorporated in the Linux ... Looks strange, but then haven't used RH ES with that much memory, ... Michael Heiming ...
      (comp.os.linux.setup)
    • Re: Scruffy little pub
      ... I play The Little Tunes - ... Which, mostly live in memory, to be jogged by ... absolute zero falls. ... Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ ...
      (uk.rec.sheds)
    • Re: [opensuse] 4 Gig memory installed only 3 Gig seen? openSuSE 10.0
      ... David C. Rankin wrote: ... I have a dell optiplex GX280 and I just installed 4G of ram. ... Bios sees all 4G just fine, but when I look at the memory with free it ... Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org ...
      (SuSE)
    • Re: ubuntu 6.06 LTS SOS
      ... wandoo abbas wrote: ... Maybe I'm reading it wrong, but 640M isn't enough for almost ... But it seems to be close to what I think the problem is: memory. ... Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org ...
      (Ubuntu)