[systemd-devel] users and per user limits (tmpfs)
Michał Zegan
webczat_200 at poczta.onet.pl
Tue Apr 28 03:11:38 PDT 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
What if I will just make the / and similar mounts shared? Well, I am
not entirely sure about this whole terminology, not sure if I
understand it. About x11, in case of gnome I think a second x server
is spawned to service a request in context of a session (gnome 3.16)
so not sure if it would be a problem. Anyway something like on-disk
tmpfs with quotas may be safer/maybe easier to understand.
W dniu 2015-04-28 o 12:06, Lennart Poettering pisze:
> On Tue, 28.04.15 12:03, Michał Zegan (webczat_200 at poczta.onet.pl)
> wrote:
>
>> (sorry, I haven't sent a reply to the list) What about
>> namespacing and mounting tmpfs per user? You can specify a
>> filesystem size when mounting tmpfs can't you?
>
> Well, you can set this up with some packages for individual
> systems, but this cannot work for general purpose systems since X11
> uses /tmp for placing its communication sockets. Moreover, when
> this is set up the mount propagation from the user's namespace to
> the rest of system must be turned off for the root directory, and
> this will break general assumptions around mounting things through
> tools like "su" or "sudo" then, as those mounts will not propagate
> to the rest of the system either...
>
> Lennart
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=XvJO
-----END PGP SIGNATURE-----
More information about the systemd-devel
mailing list