has anyone heard the 20 group limit for user in HP UNIX?
environment : HP-UX B.11.31 U ia64
background : business requires add an existing ftp user to 70 groups;
issue statement:
user has been added into /etc/group file for all 70 groups, but use "id [username]" command to check, it can only output 20 groups;
ftp to the folder where the group was setup, user can only see the files under the folder which GID has shown in output of "id user" command, but see nothing in the folder which GID not shown in the output of id command. the privilege for all folders are 751.
PS: for security reason, we can't set the privilege of folders to 755.
solution:
I googled, found 20 group limit for user is a known limitation, and no any other workaround with this probelm, we had to wait HP to fix this.
we opened this as an issue with HP, here is the response:
Increased "ngroups_max" kernel parameter from default value of 20 to 100, (don't know how exactly they did. :( )
# kctune ngroups_max
Tunable Value Expression Changes
ngroups_max 100 100 Immed
after verification, "id" command and "ls -l" now works as expected, issue resolved.
扫一扫
08-29
2316
2316
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
