From Bugzilla Helper: User-Agent: Mozilla/4.0 (compatible; MSIE 4.01; Windows NT) Description of problem: the per user memory process limit are not working (haven't checked group or other resources limits). Version-Release number of selected component (if applicable): kernel-2.4.9-31 How reproducible: Always Steps to Reproduce: 1. Add entries to /etc/security/limits.conf like: pete hard data 15000 pete hard rss 15000 2. Start a new session as pete. Actual Results: pete's "ulimit -a" shows the right memory limits, but a test program can allocate any amount of memory, until the system crashes. Expected Results: pete's memory bomb process failed after reaching 15MB of memory. Additional info: I read somewhere else that 2.4 doesn't work well with user resource limits, but I hoped that this would be fixed with recent versions. Combining this with the current version of php on redhat 7.2 that doesn't impose memory limits neither, any user can crash our web servers with a very simple program, that includes itself, for example.
The next release will have a kernel that enforces rss limits; you can already get a preview kernel with that from rawhide....