• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

User process limitations..

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> UNIX // GNU/Linux

View previous topic :: View next topic  
Author Message
boomdrak
Just Arrived
Just Arrived


Joined: 20 Feb 2003
Posts: 0


Offline

PostPosted: Thu Feb 20, 2003 11:44 am    Post subject: User process limitations.. Reply with quote

Hi.

I was wondering if there is any possible way with debian/linux to limit a user or groups processes? I run a web/shell server back in norway and need a system that can help me limit what users can run. For example limit a user down to 2 or 3 processes.

Thanks in advance everyone! Smile

Kenneth Hauklien
Back to top
View user's profile Send private message
Jason
Forum Fanatic
Forum Fanatic


Joined: 19 Sep 2002
Posts: 16777215


Offline

PostPosted: Thu Feb 20, 2003 2:45 pm    Post subject: Reply with quote

Hi Mate,

Welcome to SFDC!

Unfortunatly, i do not know of anyway to do this, but i would be very interested if you manage to do it, or if anyone else knows how.

J
Back to top
View user's profile Send private message Send e-mail
boomdrak
Just Arrived
Just Arrived


Joined: 20 Feb 2003
Posts: 0


Offline

PostPosted: Thu Feb 20, 2003 3:06 pm    Post subject: Found one program. Reply with quote

Hi.

Ive found on perl script that can do this, but it will not parse through my new users. Take a look at it. http://packetstormsecurity.nl/UNIX/IDS/bgcheck-0.5.tar.gz Does it work good with you? Try adding a new user and run somr processes. This script does not get my new users Sad And i dont understand why. Please post me back if it works with you. Im useing the grsec linux kernel patch if it matters Wink
Back to top
View user's profile Send private message
nexus
Just Arrived
Just Arrived


Joined: 22 Feb 2003
Posts: 0
Location: /proc

Offline

PostPosted: Sat Feb 22, 2003 4:31 pm    Post subject: Reply with quote

I am not sure if this is what you are looking for but you can use ulimit to specify limitations per user or group. For example ulimit -u 3 will limit a user to running 3 processes at a time.

You may put this into a .bash_profile script for each user or make a global rules in /etc/profile. Have a look at the man page for ulimit. There a lot of usefull switches..

"ulimit -c 0" to prevent programs run by a user from dumping core
"ulimit -a" to show all current limitations for the user

etc...

hope that helps Smile
Back to top
View user's profile Send private message
flw
Forum Fanatic
Forum Fanatic


Joined: 27 May 2002
Posts: 16777215
Location: U.S.A.

Offline

PostPosted: Sat Feb 22, 2003 5:32 pm    Post subject: Reply with quote

Quote:
make a global rules in /etc/profile


Global is best so you have no chance of having one user without that rule, unknown to you.
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> UNIX // GNU/Linux All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register