From owner-freebsd-isp Thu Nov 4 17:59:14 1999 Delivered-To: freebsd-isp@freebsd.org Received: from richard2.pil.net (richard2.pil.net [207.8.164.9]) by hub.freebsd.org (Postfix) with SMTP id 0582514C57 for ; Thu, 4 Nov 1999 17:58:59 -0800 (PST) (envelope-from up@pil.net) Received: (qmail 26278 invoked by uid 1825); 5 Nov 1999 01:56:33 -0000 Date: Thu, 4 Nov 1999 20:56:33 -0500 (EST) From: X-Sender: up@richard2.pil.net To: freebsd-isp@freebsd.org Subject: login.conf and resource limits Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm new to the concept of login classes and /etc/login.conf. I need to set limits on shell users resources to prevent things like the BUFFERSIZE DoS attack, but what I've tried here isn't working: default:\ :copyright=/etc/COPYRIGHT:\ :welcome=/etc/motd:\ :setenv=MAIL=/home/$/Maildir,BLOCKSIZE=K:\ :path=~/bin /bin /usr/bin /usr/local/bin:\ :nologin=/var/run/nologin:\ :cputime=unlimited:\ :datasize=20M:\ :stacksize=4M:\ :memorylocked=8M:\ :memoryuse=16M:\ :filesize=10M:\ :coredumpsize=10M:\ :openfiles=48:\ :maxproc=64:\ :priority=0:\ :ignoretime@:\ :umask=022: This is what I came up with after checking out the man pages and examples in login.conf. If someone who's addressed this has a good example default config, that would be very helpful. TIA, James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans 3 days of clues, news, and views from the industry's best and brightest. Visit for information and registration. ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message