Difference between /etc/security/limits.conf and /proc/$PID/limits

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
0
down vote

favorite
1












My configuration in /etc/security/limits.conf is



* soft nofile 60000
* hard nofile 60000


I run nginx in ubuntu.after reboot the ubuntu, ulimit -n is 60000, but 



cat /proc/`ps -elf | grep nginx | grep 'master process' | awk 'print $4'`/limits| grep 'open files'


the answer is 1024, why not 60000?




ubuntu




share|improve this question


























    up vote
    0
    down vote

    favorite
    1












    My configuration in /etc/security/limits.conf is



    * soft nofile 60000
    * hard nofile 60000


    I run nginx in ubuntu.after reboot the ubuntu, ulimit -n is 60000, but 



    cat /proc/`ps -elf | grep nginx | grep 'master process' | awk 'print $4'`/limits| grep 'open files'


    the answer is 1024, why not 60000?




    ubuntu




    share|improve this question
























      up vote
      0
      down vote

      favorite
      1









      up vote
      0
      down vote

      favorite
      1






      1





      My configuration in /etc/security/limits.conf is



      * soft nofile 60000
      * hard nofile 60000


      I run nginx in ubuntu.after reboot the ubuntu, ulimit -n is 60000, but 



      cat /proc/`ps -elf | grep nginx | grep 'master process' | awk 'print $4'`/limits| grep 'open files'


      the answer is 1024, why not 60000?




      ubuntu




      share|improve this question














      My configuration in /etc/security/limits.conf is



      * soft nofile 60000
      * hard nofile 60000


      I run nginx in ubuntu.after reboot the ubuntu, ulimit -n is 60000, but 



      cat /proc/`ps -elf | grep nginx | grep 'master process' | awk 'print $4'`/limits| grep 'open files'


      the answer is 1024, why not 60000?





      ubuntu





      share|improve this question













      share|improve this question




      share|improve this question








      edited Mar 6 at 3:23









      muru

      33.4k577141




      33.4k577141










      asked Mar 6 at 2:56









      shenjinrui

      1




      1




















          1 Answer
          1






          active

          oldest

          votes

















          up vote
          3
          down vote













          /etc/security/limits.conf is read by the PAM module pam_limits.so at login.



          But when nginx is started at boot, it never passes through a login procedure, so PAM never has a chance to make any ulimit changes to the nginx process or any of its parent processes.



          If your nginx is started by a script, then you should add the ulimit commands to the script:



          ulimit -H -n 60000
          ulimit -S -n 60000


          If nginx is started by a systemd .service file, use systemctl edit nginx.service, and add this line to the [Service] section of the file:



          LimitNOFILE=60000:60000


          systemctl edit some.service will automatically take the original service file from [/usr]/lib/systemd tree and place the modified version under /etc/systemd instead. Any files in /etc/systemd will override any files with the same name located in [/usr]/lib/systemd tree.



          It will also cause the service configuration to be automatically reloaded, so you don't need to use systemctl daemon-reload manually.






          share|improve this answer


















          • 1




            You should use systemctl edit foo.service instead of manually copy-creating override files.
            – muru
            Mar 6 at 7:21










          • Good point, edited my answer.
            – telcoM
            Mar 6 at 7:35










          • Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
            – JdeBP
            Mar 6 at 7:45










          • I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
            – telcoM
            Mar 6 at 7:49











          Your Answer







          StackExchange.ready(function()
          var channelOptions =
          tags: "".split(" "),
          id: "106"
          ;
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function()
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled)
          StackExchange.using("snippets", function()
          createEditor();
          );

          else
          createEditor();

          );

          function createEditor()
          StackExchange.prepareEditor(
          heartbeatType: 'answer',
          convertImagesToLinks: false,
          noModals: false,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: null,
          bindNavPrevention: true,
          postfix: "",
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          );



          );








           

          draft saved


          draft discarded


















          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f428406%2fdifference-between-etc-security-limits-conf-and-proc-pid-limits%23new-answer', 'question_page');

          );

          Post as a guest

















          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes








          up vote
          3
          down vote













          /etc/security/limits.conf is read by the PAM module pam_limits.so at login.



          But when nginx is started at boot, it never passes through a login procedure, so PAM never has a chance to make any ulimit changes to the nginx process or any of its parent processes.



          If your nginx is started by a script, then you should add the ulimit commands to the script:



          ulimit -H -n 60000
          ulimit -S -n 60000


          If nginx is started by a systemd .service file, use systemctl edit nginx.service, and add this line to the [Service] section of the file:



          LimitNOFILE=60000:60000


          systemctl edit some.service will automatically take the original service file from [/usr]/lib/systemd tree and place the modified version under /etc/systemd instead. Any files in /etc/systemd will override any files with the same name located in [/usr]/lib/systemd tree.



          It will also cause the service configuration to be automatically reloaded, so you don't need to use systemctl daemon-reload manually.






          share|improve this answer


















          • 1




            You should use systemctl edit foo.service instead of manually copy-creating override files.
            – muru
            Mar 6 at 7:21










          • Good point, edited my answer.
            – telcoM
            Mar 6 at 7:35










          • Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
            – JdeBP
            Mar 6 at 7:45










          • I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
            – telcoM
            Mar 6 at 7:49















          up vote
          3
          down vote













          /etc/security/limits.conf is read by the PAM module pam_limits.so at login.



          But when nginx is started at boot, it never passes through a login procedure, so PAM never has a chance to make any ulimit changes to the nginx process or any of its parent processes.



          If your nginx is started by a script, then you should add the ulimit commands to the script:



          ulimit -H -n 60000
          ulimit -S -n 60000


          If nginx is started by a systemd .service file, use systemctl edit nginx.service, and add this line to the [Service] section of the file:



          LimitNOFILE=60000:60000


          systemctl edit some.service will automatically take the original service file from [/usr]/lib/systemd tree and place the modified version under /etc/systemd instead. Any files in /etc/systemd will override any files with the same name located in [/usr]/lib/systemd tree.



          It will also cause the service configuration to be automatically reloaded, so you don't need to use systemctl daemon-reload manually.






          share|improve this answer


















          • 1




            You should use systemctl edit foo.service instead of manually copy-creating override files.
            – muru
            Mar 6 at 7:21










          • Good point, edited my answer.
            – telcoM
            Mar 6 at 7:35










          • Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
            – JdeBP
            Mar 6 at 7:45










          • I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
            – telcoM
            Mar 6 at 7:49













          up vote
          3
          down vote










          up vote
          3
          down vote









          /etc/security/limits.conf is read by the PAM module pam_limits.so at login.



          But when nginx is started at boot, it never passes through a login procedure, so PAM never has a chance to make any ulimit changes to the nginx process or any of its parent processes.



          If your nginx is started by a script, then you should add the ulimit commands to the script:



          ulimit -H -n 60000
          ulimit -S -n 60000


          If nginx is started by a systemd .service file, use systemctl edit nginx.service, and add this line to the [Service] section of the file:



          LimitNOFILE=60000:60000


          systemctl edit some.service will automatically take the original service file from [/usr]/lib/systemd tree and place the modified version under /etc/systemd instead. Any files in /etc/systemd will override any files with the same name located in [/usr]/lib/systemd tree.



          It will also cause the service configuration to be automatically reloaded, so you don't need to use systemctl daemon-reload manually.






          share|improve this answer














          /etc/security/limits.conf is read by the PAM module pam_limits.so at login.



          But when nginx is started at boot, it never passes through a login procedure, so PAM never has a chance to make any ulimit changes to the nginx process or any of its parent processes.



          If your nginx is started by a script, then you should add the ulimit commands to the script:



          ulimit -H -n 60000
          ulimit -S -n 60000


          If nginx is started by a systemd .service file, use systemctl edit nginx.service, and add this line to the [Service] section of the file:



          LimitNOFILE=60000:60000


          systemctl edit some.service will automatically take the original service file from [/usr]/lib/systemd tree and place the modified version under /etc/systemd instead. Any files in /etc/systemd will override any files with the same name located in [/usr]/lib/systemd tree.



          It will also cause the service configuration to be automatically reloaded, so you don't need to use systemctl daemon-reload manually.







          share|improve this answer














          share|improve this answer



          share|improve this answer








          edited Mar 6 at 7:35

























          answered Mar 6 at 6:34









          telcoM

          10.7k11132




          10.7k11132







          • 1




            You should use systemctl edit foo.service instead of manually copy-creating override files.
            – muru
            Mar 6 at 7:21










          • Good point, edited my answer.
            – telcoM
            Mar 6 at 7:35










          • Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
            – JdeBP
            Mar 6 at 7:45










          • I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
            – telcoM
            Mar 6 at 7:49













          • 1




            You should use systemctl edit foo.service instead of manually copy-creating override files.
            – muru
            Mar 6 at 7:21










          • Good point, edited my answer.
            – telcoM
            Mar 6 at 7:35










          • Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
            – JdeBP
            Mar 6 at 7:45










          • I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
            – telcoM
            Mar 6 at 7:49








          1




          1




          You should use systemctl edit foo.service instead of manually copy-creating override files.
          – muru
          Mar 6 at 7:21




          You should use systemctl edit foo.service instead of manually copy-creating override files.
          – muru
          Mar 6 at 7:21












          Good point, edited my answer.
          – telcoM
          Mar 6 at 7:35




          Good point, edited my answer.
          – telcoM
          Mar 6 at 7:35












          Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
          – JdeBP
          Mar 6 at 7:45




          Beaten by muru. I was going to say the same. And also note that you missed out an Upstart job file, the actual most likely alternative to a systemd unit. There's a lot more on this subject on AskUbuntu. Witness askubuntu.com/questions/941617 , askubuntu.com/questions/635110 , and many others.
          – JdeBP
          Mar 6 at 7:45












          I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
          – telcoM
          Mar 6 at 7:49





          I'm actually not too familiar with Upstart as used on Ubuntu; feel free to edit my answer to add specifics on Upstart.
          – telcoM
          Mar 6 at 7:49













           

          draft saved


          draft discarded


























           


          draft saved


          draft discarded














          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f428406%2fdifference-between-etc-security-limits-conf-and-proc-pid-limits%23new-answer', 'question_page');

          );

          Post as a guest
































































          -

          Popular posts from this blog

          How to check contact read email or not when send email to Individual?

          Image
          Clash Royale CLAN TAG #URR8PPP up vote 1 down vote favorite I'm using WordPress 4.9.8, CiviCRM to 5.5.1, I usually send email to contact by Search> Find contacts View contact details Action> Send email Send email ok, Contact received mail ok like picture But status only Email sent though contact read email or not. So, can CiviCRM can change status to Email read when contact read email? wordpress email share | improve this question asked Sep 26 at 0:12 ToanLuong 49 9 add a comment  |  up vote 1 down vote favorite I'm using WordPress 4.9.8, CiviCRM to 5.5.1, I usually send email to contact by Search> Find contacts View contact details Action> Send email Send email ok, Contact received mail ok like picture But status only Email sent though contact read email or not. So, can CiviCRM can change status to Email read when contact read email? wordpress email share | improve this questi...
          Read more

          How many registers does an x86_64 CPU actually have?

          Image
          Clash Royale CLAN TAG #URR8PPP up vote 2 down vote favorite I am currently learning reverse engineering and am studying the flags register. I had in my mind that rflags was just another name for one of the 16 general purpose registers, for example rax or rbx . But it looks like rflags is actually an additional register. So that makes 17 registers in total... how many more could there be? I have spent at least an hour on this and found numerous different answers. The best answer so far is this, which says that there are 40 registers in total. 16 General Purpose Registers 2 Status Registers 6 Code Segment Registers 16 SSE Registers 8 FPU/MMX Registers But if I add that up, I get 48. Could anybody provide an official answer on how many registers an x86_64 CPU has (e.g. an Intel i7). Additionally, I have seen references to 'hardware' and 'architectural' registers. What are those registers and how many are there? register x86-64 share | improve this...
          Read more

          Nur Jahan

          Image
          For other people named Noor Jahan, see Noor Jahan (disambiguation). Nur Jahan نور جہاں Padshah Begum Idealized portrait of the Mughal empress Nur Jahan Empress consort of the Mughal Empire Tenure 25 May 1611 - 28 October 1627 Coronation 1611 Predecessor Saliha Banu Begum Successor Mumtaz Mahal Naib-i-Sultanat of the Mughal Empire Tenure 1616 - 28 October 1627 Born Mehr-un-Nissa 31 May 1577 Kandahar, Afghanistan Died 17 December 1645 (1645-12-17) (aged 68) Lahore, Mughal Empire (present-day Pakistan) Burial Tomb of Nur Jahan, Lahore Spouse Sher Afgan Khan ( m. 1594–1607) Jahangir ( m. 1611–1627) Issue Ladli Begum House Timurid (by marriage) Father Mirza Ghiyas Beg Mother Asmat Begam Religion Shia Islam Nur Jahan (born Mehr-un-Nissa ) (31 May 1577 – 18 December 1645 [1] ) was the twentieth (and last) wife of the Mughal emperor Jahangir. Nur Jahan was born Mehr-un-Nissa, the daughter of a Grand Vizier (Minister) who served...
          Read more