[17071] in Athena Bugs
"limit coredumpsize 0" in the default dotfiles
daemon@ATHENA.MIT.EDU (Camilla R Fox)
Wed Aug 18 19:56:19 1999
Message-Id: <199908182356.TAA10744@x15-cruise-basselope.mit.edu>
To: bugs@MIT.EDU
Date: Wed, 18 Aug 1999 19:56:10 -0400
From: Camilla R Fox <cfox@MIT.EDU>
I've noticed a number of users with large coredumps (almost always
from netscape under irix) in their homedirs.
I investigated with a test account, and found that under irix, the
limits do not get inherited from shell to shell, but are set to some
default with each shell. Since the setting of limit in
/usr/athena/lib/init/cshrc is wrapped in a conditional so that it only
gets executed in the first shell, it has no effect on subsequent
shells.
jhawk notes that this is controlled in /var/sysgen/mtune/kernel
* reset_limits_on_exec = 1 ==> Reset rlimits on exec of processes that are
* setuid to root to prevent unprivileged processes from
* enforcing resource limitations on setuid/setgid procs.
* reset_limits_on_exec = 0 ==> Don't reset limits on execs of setuid procs.
* Warning: Allowing non-root user to enforce
* resource limitations on setuid/setgid to root
* program can compromise system security. Do
* not set this option to zero unless you are
* sure all setuid/setgid to root programs on
* your system can recover from problem caused
* by resource limit.
...
reset_limits_on_exec 1
Of course, there are dotfile quick fixes that would also work.
