diff options
| -rw-r--r-- | nixos/modules/security/pam.nix | 4 | ||||
| -rw-r--r-- | nixos/modules/system/boot/coredump.nix | 7 |
2 files changed, 9 insertions, 2 deletions
diff --git a/nixos/modules/security/pam.nix b/nixos/modules/security/pam.nix index 48998285d89d..bef10b4fe614 100644 --- a/nixos/modules/security/pam.nix +++ b/nixos/modules/security/pam.nix @@ -449,6 +449,10 @@ in <varname>item</varname>, and <varname>value</varname> attribute. The syntax and semantics of these attributes must be that described in the limits.conf(5) man page. + + Note that these limits do not apply to systemd services, + whose limits can be changed via <option>systemd.extraConfig</option> + instead. ''; }; diff --git a/nixos/modules/system/boot/coredump.nix b/nixos/modules/system/boot/coredump.nix index b27a35b6257d..30f367da7666 100644 --- a/nixos/modules/system/boot/coredump.nix +++ b/nixos/modules/system/boot/coredump.nix @@ -15,8 +15,11 @@ with lib; Enables storing core dumps in systemd. Note that this alone is not enough to enable core dumps. The maximum file size for core dumps must be specified in limits.conf as well. See - <option>security.pam.loginLimits</option> as well as the limits.conf(5) - man page. + <option>security.pam.loginLimits</option> and the limits.conf(5) + man page (these specify the core dump limits for user login sessions) + and <option>systemd.extraConfig</option> (where e.g. + <literal>DefaultLimitCORE=1000000</literal> can be specified to set + the core dump limit for systemd system-level services). ''; }; |