pam_succeed_if -- error messages in the log
Matthew Miller
mattdm at mattdm.org
Thu Jun 10 03:44:32 UTC 2004
On Wed, Jun 09, 2004 at 01:14:05PM -0500, olga at urbantimes.net wrote:
> Well, unfortunagely changing the location of where the messages are sent
> isn't the solution for me. I really would like to see who is logging in
> and out. I wish there was a fix for this problem.
Here's one: simply remove
account sufficient /lib/security/$ISA/pam_succeed_if.so uid < 100
from pam.d. If all you have is local accounts, then it's not likely to be
relevant anyway.
If you have krb5 or ldap, you'll want to add:
account sufficient /lib/security/$ISA/pam_localuser.so
*after* the pam_unix.so but before the krb5.so or ldap line.
--
Matthew Miller mattdm at mattdm.org <http://www.mattdm.org/>
Boston University Linux ------> <http://linux.bu.edu/>
More information about the users
mailing list