From: Yilmaz Cankaya (ycankaya@sirius-group.com)
Date: Tue 09 Aug 2005 - 13:46:58 EEST
Peki
kalıcı bir cozum olmamakla birlikte
soyle de yapabilirsin
#su - root
# ulimit -n 4096
#ulimit -u 16384
# su - kullanici_ismi
#ulimit -a
Diger bir care:
ksh shell kullanirsan sorun kalmaz.. pdksh paketini kurman
gerekli bunun icin..
kolay gelsin
On Tue, 09 Aug 2005 13:23:04 +0300
"N.Ersen SISECI" <siseci@acikkod.org> wrote:
>
>Selamlar,
>su dosyasina bu satiri ekledim ama yine olmadi.
>
>Normalde bu kullanici ssh ile baglanmayacak ama denemek
>icin sshd_config
>i de
>degistirdim. Maalesef sonuc yine ayni.
>
>Iyi calismalar.
>
>Sal, 2005-08-09 tarihinde 03:14 -0700 saatinde, Yilmaz
>Cankaya yazdı:
>
>> 1-)
>> /etc/pam.d/su
>> dosyasına
>> session required
> /lib/security/$ISA/pam_limits.so
>> satırını eklemeyi dene.
>> 2-)
>> ssh ile baglaniyorsan
>> sshd_config dosyanda
>> UsePrivilegeSeparation = no
>> olarak degistir
>> ve
>> tamamen logout olup tekrar login olmayi da unutma
>> kolay gelsin
>>
>>
>> On Tue, 09 Aug 2005 11:10:44 +0300
>> "N.Ersen SISECI" <siseci@acikkod.org> wrote:
>> >
>> >
>> >Selamlar,
>> >
>> >RH ES 3 bir sunucu uzerinde bir kullanici icin max.
>open
>> >files degerini
>> >degistirmeye calisiyorum.
>> >
>> >/etc/security/limits.conf dosyasina
>> >
>> >username soft nofile 4096
>> >username hard nofile 4096
>> >
>> >yaziyorum.
>> >su - username
>> >ile ne kadar denediysem de ulimit ile baktigimda bu
>deger
>> >degismiyor.
>> >
>> >Ancak nofile yerine nproc yazarak denedigimde degerler
>> >degisiyor.
>> >
>> >
>> > /etc/pam.d/su ve /etc/pam.d/system-auth dosyalarinin
>> >icerigi asagida.
>> >
>> >
>> >root@server [/home/siseci]# cat /etc/pam.d/su
>> >#%PAM-1.0
>> >auth sufficient
> /lib/security/$ISA/pam_rootok.so
>> ># Uncomment the following line to implicitly trust
>users
>> >in the "wheel"
>> >group.
>> >#auth sufficient
> /lib/security/$ISA/pam_wheel.so
>> >trust use_uid
>> ># Uncomment the following line to require a user to be
>in
>> >the "wheel"
>> >group.
>> >#auth required
> /lib/security/$ISA/pam_wheel.so
>> >use_uid
>> >auth required /lib/security/$ISA/pam_stack.so
>> >service=system-auth
>> >account required /lib/security/$ISA/pam_stack.so
>> >service=system-auth
>> >password required /lib/security/$ISA/pam_stack.so
>> >service=system-auth
>> >session required /lib/security/$ISA/pam_stack.so
>> >service=system-auth
>> >session optional /lib/security/$ISA/pam_xauth.so
>> >
>> >
>> >root@server [/home/siseci]# cat /etc/pam.d/system-auth
>> ># This file is auto-generated.
>> ># User changes will be destroyed the next time
>authconfig
>> >is run.
>> >auth required /lib/security/$ISA/pam_env.so
>> >auth sufficient
> /lib/security/$ISA/pam_unix.so
>> >likeauth nullok
>> >auth required
> /lib/security/$ISA/pam_deny.so
>> >
>> >account required
> /lib/security/$ISA/pam_unix.so
>> >
>> >password required
>> > /lib/security/$ISA/pam_cracklib.so retry=3
>> >type=
>> >password sufficient
> /lib/security/$ISA/pam_unix.so
>> >nullok
>> >use_authtok md5 shadow
>> >password required
> /lib/security/$ISA/pam_deny.so
>> >
>> >session required
> /lib/security/$ISA/pam_limits.so
>> >session required
> /lib/security/$ISA/pam_unix.so
>> >
>> >Nerede hata yaptigim konusunda yardimci olursaniz
>> >sevinirim.
>> >
>> >Iyi calismalar.
>> >
>> >
>> >--
>> >N. Ersen SISECI
>> >http://www.enderunix.org
>> >http://www.acikkod.org
>> >
>> >OS: FreeBSD 5.4-RC3
>> >Mail Client: Gnome evolution-2.2 2.2.1.1
>> >
>>
>> _______________________________________________
>> Linux mailing list
>> Linux@liste.linux.org.tr
>> http://liste.linux.org.tr/mailman/listinfo/linux
_______________________________________________
Linux mailing list
Linux@liste.linux.org.tr
http://liste.linux.org.tr/mailman/listinfo/linux