Hi,
I recently discovered the PrivateNetwork
option in systemd.exec(5), and I was wondering:
Is it also possible to restrict user sessions with this option?
I'd like to prevent a certain user's group from
accessing the network configuration of my machine
(they should even be forbidden to see
On Mon, Aug 25, 2014 at 12:58 PM, Yarny ya...@public-files.de wrote:
I recently discovered the PrivateNetwork
option in systemd.exec(5), and I was wondering:
Is it also possible to restrict user sessions with this option?
I'd like to prevent a certain user's group from
accessing the network
Instead, you should check if someone has written a PAM 'session'
module which could do this. (There's one for mount namespaces.) If
not, one should be easy to write, and it'll protect *all* login
methods.
I just found pam_netns http://pam-netns.sourceforge.net
and will follow that path.
On Mon, 25.08.14 11:58, Yarny (ya...@public-files.de) wrote:
Hi,
I recently discovered the PrivateNetwork
option in systemd.exec(5), and I was wondering:
Is it also possible to restrict user sessions with this option?
Not with systemd tools. But there are packages such as pam_netns which