Re: Allow logins only via su? Never via xdm/gdm or login prompt?
From: Walter Roberson (roberson_at_ibd.nrc-cnrc.gc.ca)
Date: 06/30/03
- Next message: Bill Unruh: "Re: Security during the early internet days"
- Previous message: Stowell Davison: "Allow logins only via su? Never via xdm/gdm or login prompt?"
- In reply to: Stowell Davison: "Allow logins only via su? Never via xdm/gdm or login prompt?"
- Next in thread: Juha Laiho: "Re: Allow logins only via su? Never via xdm/gdm or login prompt?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 30 Jun 2003 21:29:15 GMT
In article <3F00A192.AE1A6345@noaa.gov>,
Stowell Davison <Stowell.Davison@noaa.gov> wrote:
:This is a multi-part message in MIME format.
MIME has no place in newsgroups that do not specifically permit it :(
:We have a few accounts that must be accessible to
:several people. I'd like to allow login to these
:accounts only via su; never from a gdm/xdm login
:screen or a text mode login prompt. Is there any
:way to impose such a restriction?
You'll have to tell us exactly which OS you are using, and which
version of it.
I seem to recall hearing that you could do something like that with
SunOS.
Under SGI's IRIX, I can't think of any way that is certain to handle
it. What might have a chance, though, would be to modify
/etc/default/login to set SITECHECK, and have the sitecheck program
reject all logins to that account. It appears that the 'su' program
might bypass SITECHECK, thus allowing you to login in to that account.
-- Ceci, ce n'est pas une idée.
- Next message: Bill Unruh: "Re: Security during the early internet days"
- Previous message: Stowell Davison: "Allow logins only via su? Never via xdm/gdm or login prompt?"
- In reply to: Stowell Davison: "Allow logins only via su? Never via xdm/gdm or login prompt?"
- Next in thread: Juha Laiho: "Re: Allow logins only via su? Never via xdm/gdm or login prompt?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
