On Tue, Oct 9, 2018 at 6:15 PM Lennart Poettering <[email protected]> wrote:
> On Di, 09.10.18 14:45, Anderson, Charles R ([email protected]) wrote: > > > > It would be nice if somebody managed to find where this is patched in > > > Debian. Because I somewhat doubt that they made this change without a > > > proper discussion. And Debian is very much server oriented. > > > > Can we not have the RPM package drop a file in /etc/security/limits.d > > to set the limit only when that package is installed? That way it > > only affects users of that package. > > That only affects stuff that goes through PAM (specifically, all PAM > stacks that include pam_limits.so). > > It is my intention to change this system wide, i.e. for system > services (which do not go through PAM) too. > Lennart, what is the path forward here? Should we pull in some security experts to give us recommendations on the best default value? Or are those conversations already happening somewhere else? Also, do you need any more information regarding the Wine esync use case, or has Zebediah provided sufficient data? Thanks.
_______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
