frieder.hannenheim/fruitbasket
1
0
Fork 0
forked from wurzel/fruitbasket
Code Pull requests Activity

ulimit: limit maximum number of processes per user

Browse source 
- Limits the number of processes a user can start to 2000
  Mostly in place to prevent fork bombs taking down the host.
- If anyone encounters problems with this number we can raise it
This commit is contained in:
Rouven Seifert 2024-03-03 11:34:39 +01:00
parent 017a807a7c
commit d611cc5a26
Signed by untrusted user: rouven.seifert
GPG key ID: B95E8FE6B11C4D09
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
hosts/quitte/configuration.nix
View file

@ -29,6 +29,15 @@
git git
]; ];
# prevent fork bombs
security.pam.loginLimits = [
{
domain = "@users";
item = "nproc";
type = "hard";
value = "2000";
}
];
# Enable the OpenSSH daemon. # Enable the OpenSSH daemon.
services.openssh.enable = true; services.openssh.enable = true;
services.openssh.settings.PermitRootLogin = "yes"; services.openssh.settings.PermitRootLogin = "yes";