[lug] ulimit for user with no shell
Bamm Visscher
bamm.visscher at gmail.com
Mon Jul 24 13:13:35 MDT 2006
Try adding the following to your /etc/pam.d/other:
session required pam_limits.so
Bammkkkk
On 7/24/06, Hugh Brown <hugh at math.byu.edu> wrote:
> I've got a redhat box running as an ldap server. The openldap daemon runs
> as user ldap and has a shell of /bin/false.
>
> Unfortunately the default number of open files is 1024 (which includes TCP
> connections). Once the openldap server hits too many open connections, it
> starts refusing connections.
>
> Is it possible (within the redhat framework) to adjust the limit upward
> w/o giving ldap a shell?
>
> I've tried setting /etc/security/limits.conf with
>
> * - nofiles 8192
>
> and it works when I log in as a regular user, but it doesn't get picked up
> by the script for /etc/init.d/ldap
>
> I've tried adding "ulimit -n 8192" in the /etc/init.d/functions daemon
> function and it reports setting it, but openldap still refuses connections
> around 1024.
>
> Everything I've found on the web assumes a working shell for the user.
>
>
> TIA,
>
> Hugh
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
>
--
sguil - The Analyst Console for NSM
http://sguil.sf.net
More information about the LUG
mailing list