[grsec] re: Urgent problem: denied resource overstep
Schwarz
schwarz at power-netz.de
Mon Jul 11 06:18:53 EDT 2005
> Jul 8 12:36:19 daffy kernel: grsec: From 84.35.16.78: denied
> resource
> overstep by requesting 328 for RLIMIT_NPROC against limit 256 for
> /usr/sbin/in.ftpd[in.ftpd:28746] uid/euid:0/1001
> gid/egid:0/100, parent
> /usr/sbin/inetd[inetd:16359] uid/euid:0/0 gid/egid:0/0
You get your Limits from the prozess which fork yourself,
spoken as task. your ftpd gehts it from inetd and if inetd
did not change them,, it got them from init.
If you want this gone, set an ulimit in the init.d script
of ftpd or if not standalone in your inetd i.e. xinetd startscript.
If you use xinetd, you can change it in your config file.
On the other hand, if your ftpd would become the user who logged in, you
could control your users better and get rid of the problem at the same
time :)
M.Schwarz
More information about the grsecurity
mailing list