Date: Fri, 21 Jan 2000 20:45:43 +0600 (NOVT) From: "Alexey N. Dokuchaev" <danfe@ssc.nsu.ru> Cc: FreeBSD questions list <freebsd-questions@FreeBSD.ORG> Message-ID: <Pine.LNX.4.10.10001212034430.23685-100000@inet.ssc.nsu.ru> In-Reply-To: <86925t$dsj$1@inner.demon.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi! I've written special login.conf to restrict regular users access/auth rights. Particulary, login no more than on 4 consoles, and no login from certain ttys, timelimits, etc. So, it seems that login should call proper pam modules, configured in /etc/pam.conf (which is left default for now, until I figure all things out). The odd thing is that certain restrictions work, such as maxproc limits (and relatives), while the others do not (login sessions number limits, autologoff when timelimit reached, etc). Moreover, I see no PAM[...] entries in syslog logs (I have *.* all go to /dev/ttyvb) -- nothing like this there. So, what program has to check all those? Login? But it inself should be using PAM whenever possible. For instance, under Linux, there's pam_nologin module, which checks for nologin file (/etc/ under linux and /var/run/ under fBSD). I can't see any evidence that PAM routines get called on my system. If you need any addition info, say it ;-) I'm using 3.4-RELEASE. Standard /etc/pam.conf (no pam.d directory), I didn't change that. How to enable PAM? Thanx. ./danfe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.10.10001212034430.23685-100000>