From owner-freebsd-questions@FreeBSD.ORG  Thu Dec 22 08:42:15 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: questions@freebsd.org
Delivered-To: freebsd-questions@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5CE8E16A41F
	for <questions@freebsd.org>; Thu, 22 Dec 2005 08:42:15 +0000 (GMT)
	(envelope-from valerio.daelli@gmail.com)
Received: from xproxy.gmail.com (xproxy.gmail.com [66.249.82.192])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9127043D5A
	for <questions@freebsd.org>; Thu, 22 Dec 2005 08:42:14 +0000 (GMT)
	(envelope-from valerio.daelli@gmail.com)
Received: by xproxy.gmail.com with SMTP id t12so242863wxc
	for <questions@freebsd.org>; Thu, 22 Dec 2005 00:42:13 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references;
	b=dRYUbx5VlcqNG7haJj8KsBCvDAwwgt6cq1El/UVtIPyTpfusgD5eH+XUTIVYTjfCr93cZSP38PDxvCMeDm5wRRlCzTr53p/l2rKGjBSiT1FtZMv2JOqWRESsOuyYnCJ12jgHpA8yKOBySchLcZS7FgoHsD5trU/qBxIPg0zWGRE=
Received: by 10.70.79.4 with SMTP id c4mr1750526wxb;
	Thu, 22 Dec 2005 00:42:13 -0800 (PST)
Received: by 10.70.68.4 with HTTP; Thu, 22 Dec 2005 00:42:13 -0800 (PST)
Message-ID: <27dbfc8c0512220042s6b6f1704m320204550fce595b@mail.gmail.com>
Date: Thu, 22 Dec 2005 09:42:13 +0100
From: Valerio daelli <valerio.daelli@gmail.com>
To: Feczak Szabolcs <feczo@siodigit.hu>
In-Reply-To: <43A99FCF.5070409@siodigit.hu>
MIME-Version: 1.0
References: <43A99FCF.5070409@siodigit.hu>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: questions@freebsd.org
Subject: Re: Group membership above 15 of them
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Dec 2005 08:42:15 -0000

On 12/21/05, Feczak Szabolcs <feczo@siodigit.hu> wrote:
>
> Hi,
>
> I would like to have users with more than 15 groups. The default
> kern.ngroups: is 16 by default and readonly, and not even /etc/sysctl.con=
f
> allows to modify it after reboot, although securelevel is -1. I read
> somewhere
> that I need the modify the source and rebuild world for this. If I put
> myself
> into more than 15 groups I cannot login anymore and only
> sshd[52178]: initgroups(username,100): Invalid argument message
> in the syslog warns me about this - I think more warnings needed
> at some other point since you can easily lock out yourself from
> a remote system.
>
> So what steps should I take to let this configuration work.
> Isn't there an easier way  then rebuild wolrd ?


We have a configuration with 64 groups and it is pretty stable.
We modified the sources:

/usr/include/sys/syslimits.h
/usr/src/sys/sys/syslimits.h

and put the NGROUPS_MAX to 64.
Then we rebuilt everything and now it just works.

Valerio