Yeah - you are right :) I guess I didn't think too much before writing that line...
auth required /lib/security/pam_listfile.so onerr=fail item=user sense=allow file=/etc/sshd_users Cheers, Ohad -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tzafrir Cohen Sent: Monday, September 19, 2005 3:20 PM To: [email protected] Subject: Re: Improving server security On Mon, Sep 19, 2005 at 12:39:57PM +0200, [EMAIL PROTECTED] wrote: > > One Other thing that I've implemented is a PAM module that checks for > allowed users - i.e. if user xxx is not in the list, it will never > really check its password when trying to logon... Why a special module? Wouldn't pam_listfile do? -- Tzafrir Cohen | [EMAIL PROTECTED] | VIM is http://tzafrir.org.il | | a Mutt's [EMAIL PROTECTED] | | best ICQ# 16849755 | | friend ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED] ================================================================To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
