Thursday, October 18, 2007

Tagged...

Usually avoid this stuff like the plague. But:

Rules:
* Each blogger must post these rules first
* Each blogger must start eight random facts/habits about themselves
* Bloggers tagged need to write about their eight things
* At the end of your blog, choose eight people to get tagged & list their names

I don't have 8 bloggers to tag nor do I have 8 readers. But I'll try.

1) I have to brush my teeth before sports activities, it is half superstition, half habit.

2) I love Apple laptops.

3) Usually when I buy clothes, I buy two or three of the same item.

4) I change jobs when I'm bored with work.

5) Taking tests is fun, especially certification tests. Even if that time between when you press submit and the exam is graded feels like a million years in that 10 seconds.

6) I'm supposed to be walking right now.

7) Shoes. I like shoes and have 9 pairs.

8) I have several serial console cables at reach at all times.

Wednesday, March 28, 2007

su - on sles 9 doesn't respect limits.

This can end up causing some good security holes.

If you put in a ulimit for higher files for a user named oracle (just an example) in /etc/security/limits.conf:

oracle soft nofile 2048
oracle hard nofile 65535


then run ulimit -a >~limits in cron. Your file limit is 1024 (the default on SLES).

Why? I'll tell you.

Crond does a su - to you user. ON SLES SU - DOESN"T RESPECT THE LIMITS IF THEY ARE HIGHER!!! I haven't tried lower yet.

If you login interactively your limits are fine. If you su - oracle as root, your limits are f-d up (back to the system default 1024).

This doesn't happen on RH/Fedora and as far as I can tell Debian/Ubuntu.