aboutsummaryrefslogtreecommitdiff
path: root/modules/pam_limits/limits.conf.5.xml
diff options
context:
space:
mode:
Diffstat (limited to 'modules/pam_limits/limits.conf.5.xml')
-rw-r--r--modules/pam_limits/limits.conf.5.xml11
1 files changed, 10 insertions, 1 deletions
diff --git a/modules/pam_limits/limits.conf.5.xml b/modules/pam_limits/limits.conf.5.xml
index 380a1399..cd64ac90 100644
--- a/modules/pam_limits/limits.conf.5.xml
+++ b/modules/pam_limits/limits.conf.5.xml
@@ -228,6 +228,13 @@
</listitem>
</varlistentry>
<varlistentry>
+ <term><option>nonewprivs</option></term>
+ <listitem>
+ <para>value of 0 or 1; if set to 1 disables acquiring new
+ privileges by invoking prctl(PR_SET_NO_NEW_PRIVS)</para>
+ </listitem>
+ </varlistentry>
+ <varlistentry>
<term><option>priority</option></term>
<listitem>
<para>the priority to run user process with (negative
@@ -274,7 +281,8 @@
<para>
All items support the values <emphasis>-1</emphasis>,
<emphasis>unlimited</emphasis> or <emphasis>infinity</emphasis> indicating no limit,
- except for <emphasis remap='B'>priority</emphasis> and <emphasis remap='B'>nice</emphasis>.
+ except for <emphasis remap='B'>priority</emphasis>, <emphasis remap='B'>nice</emphasis>,
+ and <emphasis remap='B'>nonewprivs</emphasis>.
</para>
<para>
If a hard limit or soft limit of a resource is set to a valid value,
@@ -323,6 +331,7 @@
@faculty hard nproc 50
ftp hard nproc 0
@student - maxlogins 4
+@student - nonewprivs 1
:123 hard cpu 5000
@500: soft cpu 10000
600:700 hard locks 10
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-08 21:02:39 +0000