Could you please let me how you were able to set per process memory usage. In limits.conf, I see “memlock - max locked-in-memory address space (KB)” and “rss - max resident set size (KB)”, which one do i need to set… and what is the difference and significance between these two …

Scenario: I have a 4GB ram RHEL login server, here I want to put a restriction like — any user process should not take more than 512MB of RAM….

is it possible this way?

Thanks,
Sudheendra

But such goals conflict with other goals (such as making things fast), and we miss out on such features.

I agree that the defaults should be optimised for the majority of cases in most situations, except where the majority case will be dangerous for the minority. The Debian default of creating mode 755 home directories is a bad idea IMHO.

But what is the reason for that? Is it so nice that users can break stuff for others or does the system simply provide inadequate controls to prevent it (easily)?

> Social pressure from other students did a reasonable job of policing the system.

Depending on social pressure for security is not desirable if it can be avoided.

> As for world-readable home directories, that is only suitable for certain small projects. If you have a machine purchased for a small group of people to use with a single project then it makes some sense. In all other cases (the vast majority of cases) it’s a bad idea.

Shouldn’t the defaults be optimized for the majority of cases?

I recall one occasion at university when I accidentally DOSed an important time-sharing system (a bug in my code combined with a bug in the ulimit controls which were apparently applied per session not per UID). As soon as I realised my mistake (minutes before other students realised) I packed up my stuff, ran to the station, and took the first train home. Social pressure from other students did a reasonable job of policing the system.

Virtual systems do help. But the total lack of IO bandwidth controls still allows the potential for DOS attacks unless you have separate spindles.

As for world-readable home directories, that is only suitable for certain small projects. If you have a machine purchased for a small group of people to use with a single project then it makes some sense. In all other cases (the vast majority of cases) it’s a bad idea.

An OT question: what’s your opinion on world-readable home dirs?

If I could set a per-user limit I would. Of course I still face the issue of root:user_r not being equivalent to root:system_r or root:sysadm_r.

Why is a process limit needed at all?
Can’t you just limit the basic resources (CPU time, RAM, storage and network)?

> For running the occasional memory intensive process such as GCC the per-process memory limit needs to be at least 20M, if the user was to compile big C++ programs then 100M may be needed (I’ve seen a G++ process use more than 90M of memory when compiling a KDE source file). This means that a single user who can launch 20 processes which can each use 20M of memory could use 400M of memory,

Why can’t you just set a per-user limit instead of a per-process limit?