Date: Sun, 18 Aug 2002 02:10:16 +0400 From: "Andrey A. Chernov" <ache@nagual.pp.ru> To: Jan Schlesner <jschlesn@physik.TU-Berlin.DE> Cc: Mike Tancsa <mike@sentex.net>, stable@FreeBSD.ORG, security@FreeBSD.ORG Subject: Re: login.access no longer works with default sshd Message-ID: <20020817221015.GA14994@nagual.pp.ru> In-Reply-To: <20020817213638.GA92398@physik.TU-Berlin.DE> References: <5.1.1.6.0.20020816104955.03cdcc98@marble.sentex.ca> <20020817213638.GA92398@physik.TU-Berlin.DE>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Aug 17, 2002 at 23:36:38 +0200, Jan Schlesner wrote: > On Fri, Aug 16, 2002 at 10:53:52AM -0400, Mike Tancsa wrote: > > I noticed that /etc/login.access is no longer consulted with sshd by > > default. Are there any dangers/caveats of turning on UseLogin yes ? As > > Login don't know how to handel xauth cookies. With "UseLogin yes" > X11-forwarding do not work. But with the options AllowGroups, > AllowUsers, DennyGroups and DennyUsers you can control the sshd-login. There was login.access patch which is lost in the merging of new openssh version. It still applies almost cleanly and restore login.access functionality. Ask DES to revive it, if you want. -- Andrey A. Chernov http://ache.pp.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020817221015.GA14994>