Revision 22718,
540 bytes
checked in by tabbott, 17 years ago
(diff) |
In pam-config:
* Only set XAUTHORITY in /etc/pam.d/ssh due to gdm problems.
* Correctly clean auto-generated debian/access.conf.debathena
* Replace pam_xauthority.so with more general pam_mktemp.so
* Use pam_mktemp.so to create/set ATHENA_SESSION_TMPDIR
* Use nss_nonlocal 1.3 to give better /etc/security/access.conf
default for private workstations: access is allowed if and only if
the user has a local account on the system
|
Line | |
---|
1 | |
---|
2 | #DEBATHENA BEGIN |
---|
3 | #DEBATHENA EXAMPLES |
---|
4 | ## Only root and tabbott can log in. |
---|
5 | #-:ALL EXCEPT root tabbott:ALL |
---|
6 | ## Only andersk and tabbott can log in remotely. |
---|
7 | #-:ALL EXCEPT andersk tabbott:ALL EXCEPT LOCAL |
---|
8 | ## Only root and users in group gsipb can log in. |
---|
9 | #-:ALL EXCEPT root gsipb:ALL |
---|
10 | # Note that you can use Moira NFS groups here |
---|
11 | # See http://debathena.mit.edu/access-controls for details |
---|
12 | |
---|
13 | # DEFAULT only allow access for users who have local accounts on the |
---|
14 | # machine (i.e. are in /etc/passwd). |
---|
15 | +:nss-local-users:ALL |
---|
16 | -:ALL:ALL |
---|
17 | #DEBATHENA END |
---|
Note: See
TracBrowser
for help on using the repository browser.