Monthly Archives: February 2013

Cgroups explained: Limiting Linux Processes

How do you limit a group of processes on Linux? – The classic answer to that is: you don’t. The reason for that is simple. Linux’ historical resource limiting solution – ulimit – works on a process level. If you start a new process, that process has limits of it’s own, which is the direct explanation for the fork bomb’s effectiveness.

Unbeknownst to a lot of sysadmins however, Linux has a new toy to play with: control groups. As you might have guessed these are groups of processes, which limits can be applied to as a whole. How do they work? Bear with me and I’ll show you…
Continue reading