[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: /etc/usertty pam module?



On Mon, 7 Jul 1997, Gregory Riggs wrote:

> Does anyone know if a usertty module is being developed, or is there any
> other modules which could restrict logins by remote host?

pam_listfile

I suppose you will want to put the list of remote hosts in a file, set the
pam_listfile to look there and use the 'apply=' extension to that module
to apply this setting to a certain group (yeah, you'll have to create a
group for those users which need to have this restriction...)

I did not test this, but from memory it should be something like:
(/etc/pam.d/login)
auth required pam_listfile file=/etc/some_file \
	item=rhost sense=allow onerr=succeed apply=@a_group_name

You get the idea: PAM is wonderful :-)

		Cristian Gafton
--
--------------------------------------------------------------------
Cristian Gafton                                    gafton@sorosis.ro
Computers & Communications Center              Network Administrator
http://sysadm.sorosis.ro/devel                         Iasi, Romania
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
UNIX is user friendly. It's just selective about who its friends are.



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []