Red Hat Bugzilla – Bug 61393
Memory limits on /etc/security/limits.conf not honoured
Last modified: 2007-04-18 12:41:00 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 4.01; Windows NT)
Description of problem:
the per user memory process limit are not working (haven't checked group or
other resources limits).
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Add entries to /etc/security/limits.conf like:
pete hard data 15000
pete hard rss 15000
2. Start a new session as pete.
Actual Results: pete's "ulimit -a" shows the right memory limits, but a test
program can allocate any amount of memory, until the system crashes.
Expected Results: pete's memory bomb process failed after reaching 15MB of
I read somewhere else that 2.4 doesn't work well with user resource limits, but
I hoped that this would be fixed with recent versions.
Combining this with the current version of php on redhat 7.2 that doesn't
impose memory limits neither, any user can crash our web servers with a very
simple program, that includes itself, for example.
The next release will have a kernel that enforces rss limits; you can already
get a preview kernel with that from rawhide....