doing something with /etc/security/access.conf

Nalin Dahyabhai nalin at redhat.com
Tue Mar 1 17:09:30 UTC 2005


On Tue, Mar 01, 2005 at 11:11:18AM -0500, Matthew Miller wrote:
> *Should* this file be included in system-auth (or at least login's and
> sshd's pam conf), or is it just "yet another access control mechanism and
> we've already got a dozen of those and that would just further confuse
> people"?
> 
> I think that if not, the comment in the file should be changed to mention
> that it's not used in the default Fedora/RH config.
> 
> Anyone have any opinion on this?

The pam_access mechanism requires that the invoking application define a
PAM_TTY item to be useful.  That rules its inclusion right out for many
PAM configurations.

Nalin




More information about the devel mailing list