From 183e0738427b83667512276a3e8c10274c0824cc Mon Sep 17 00:00:00 2001
From: Lennart Poettering <lennart@poettering.net>
Date: Wed, 4 May 2016 18:57:15 +0200
Subject: logind: enforce a limit on current user sessions

We really should put limits on all resources we manage, hence add one to the
number of concurrent sessions, too. This was previously unbounded, hence set a
relatively high limit of 8K by default.

Note that most PAM setups will actually invoke pam_systemd prefixed with "-",
so that the return code of pam_systemd is ignored, and the login attempt
succeeds anyway. On systems like this the session will be created but is not
tracked by systemd.
---
 man/logind.conf.xml | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'man')

diff --git a/man/logind.conf.xml b/man/logind.conf.xml
index 6ba35414be..405dcf9041 100644
--- a/man/logind.conf.xml
+++ b/man/logind.conf.xml
@@ -296,6 +296,15 @@
         memory as is needed.</para></listitem>
       </varlistentry>
 
+      <varlistentry>
+        <term><varname>SessionsMax=</varname></term>
+
+        <listitem><para>Controls the maximum number of concurrent user sessions to manage. Defaults to 8192
+        (8K). Depending on how the <filename>pam_systemd.so</filename> module is included in the PAM stack
+        configuration, further login sessions will either be refused, or permitted but not tracked by
+        <filename>systemd-logind</filename>.</para></listitem>
+      </varlistentry>
+
       <varlistentry>
         <term><varname>UserTasksMax=</varname></term>
 
-- 
cgit v1.2.3-54-g00ecf